Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: replace template provider with templatefile function #95

Merged
merged 5 commits into from
Feb 17, 2022
Merged

feat: replace template provider with templatefile function #95

merged 5 commits into from
Feb 17, 2022

Conversation

kevcube
Copy link
Contributor

@kevcube kevcube commented Feb 17, 2022
edited
Loading

what

  • remove template provider

why

  • m1 Mac compatibility

Duplicate

#91
I didn't realize until after pushing 🤦

@kevcube kevcube requested review from a team as code owners February 17, 2022 22:18
@kevcube kevcube requested review from dotCipher and milldr February 17, 2022 22:18
bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
Copy link

@bridgecrew bridgecrew bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bridgecrew has found infrastructure configuration errors in this PR ⬇️

main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

@bridgecrew bridgecrew bot Feb 17, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
resource "aws_instance" "default" {
resource "aws_instance" "default" {
ebs_optimized = true
LOW   Ensure that EC2 is EBS optimized
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_68

Description

TBA

main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

@bridgecrew bridgecrew bot Feb 17, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HIGH   Ensure EBS volumes have encrypted launch configurations
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_13

How to Fix

resource "aws_launch_configuration" "example" {
  ...
  instance_type = "t2.micro"
+ root_block_device {
+ encrypted     = true
+ }
  ...
}

Description

Amazon Elastic Block Store (EBS) volumes allow you to create encrypted launch configurations when creating EC2 instances and auto scaling. When the entire EBS volume is encrypted, data stored at rest on the volume, disk I/O, snapshots created from the volume, and data in-transit between EBS and EC2 are all encrypted.

Benchmarks

  • PCI-DSS V3.2 3

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
resource "aws_instance" "default" {
resource "aws_instance" "default" {
ebs_optimized = true
LOW   Ensure that EC2 is EBS optimized
    Resource: module.ec2_bastion.aws_instance.default | ID: BC_AWS_GENERAL_68

Description

TBA

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HIGH   Ensure EBS volumes have encrypted launch configurations
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_13

How to Fix

resource "aws_launch_configuration" "example" {
  ...
  instance_type = "t2.micro"
+ root_block_device {
+ encrypted     = true
+ }
  ...
}

Description

Amazon Elastic Block Store (EBS) volumes allow you to create encrypted launch configurations when creating EC2 instances and auto scaling. When the entire EBS volume is encrypted, data stored at rest on the volume, disk I/O, snapshots created from the volume, and data in-transit between EBS and EC2 are all encrypted.

Benchmarks

  • PCI-DSS V3.2 3
Dependent Resources

Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
resource "aws_instance" "default" {
resource "aws_instance" "default" {
ebs_optimized = true
LOW   Ensure that EC2 is EBS optimized
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_68

Description

TBA

Dependent Resources



Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
Copy link

@bridgecrew bridgecrew bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️   Due to a43b8f2 - Auto Format - 2 new errors were added

Change details

Error ID Change Path Resource
BC_AWS_GENERAL_13 Added /main.tf aws_instance.default
BC_AWS_GENERAL_68 Added /main.tf aws_instance.default

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
resource "aws_instance" "default" {
resource "aws_instance" "default" {
ebs_optimized = true
LOW   Ensure that EC2 is EBS optimized
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_68

Description

TBA

Dependent Resources



Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HIGH   Ensure EBS volumes have encrypted launch configurations
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_13

How to Fix

resource "aws_launch_configuration" "example" {
  ...
  instance_type = "t2.micro"
+ root_block_device {
+ encrypted     = true
+ }
  ...
}

Description

Amazon Elastic Block Store (EBS) volumes allow you to create encrypted launch configurations when creating EC2 instances and auto scaling. When the entire EBS volume is encrypted, data stored at rest on the volume, disk I/O, snapshots created from the volume, and data in-transit between EBS and EC2 are all encrypted.

Benchmarks

  • PCI-DSS V3.2 3
Dependent Resources

Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
Copy link

@bridgecrew bridgecrew bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️   Due to 76a71f1 - Merge branch 'remove_template_provider' of github.com:kevcube/terraform-aws-ec2-bastion-server into remove_template_provider - 2 new errors were added

Change details

Error ID Change Path Resource
BC_AWS_GENERAL_13 Added /main.tf aws_instance.default
BC_AWS_GENERAL_68 Added /main.tf aws_instance.default

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HIGH   Ensure EBS volumes have encrypted launch configurations
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_13

How to Fix

resource "aws_launch_configuration" "example" {
  ...
  instance_type = "t2.micro"
+ root_block_device {
+ encrypted     = true
+ }
  ...
}

Description

Amazon Elastic Block Store (EBS) volumes allow you to create encrypted launch configurations when creating EC2 instances and auto scaling. When the entire EBS volume is encrypted, data stored at rest on the volume, disk I/O, snapshots created from the volume, and data in-transit between EBS and EC2 are all encrypted.

Benchmarks

  • PCI-DSS V3.2 3
Dependent Resources

Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
main.tf
ssh_user = var.ssh_user
}
}

resource "aws_instance" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
resource "aws_instance" "default" {
resource "aws_instance" "default" {
ebs_optimized = true
LOW   Ensure that EC2 is EBS optimized
    Resource: aws_instance.default | ID: BC_AWS_GENERAL_68

Description

TBA

Dependent Resources



Calculating...

bridgecrew[bot]
bridgecrew bot reviewed Feb 17, 2022
View reviewed changes
Copy link

@bridgecrew bridgecrew bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️   Due to 7054133 - Auto Format - 2 new errors were added

Change details

Error ID Change Path Resource
BC_AWS_GENERAL_13 Added /main.tf aws_instance.default
BC_AWS_GENERAL_68 Added /main.tf aws_instance.default

@Gowiem
Copy link
Member

Gowiem commented Feb 17, 2022

/test all

@Gowiem Gowiem changed the title remove template provider feat: replace template provider with templatefile function Feb 17, 2022
@Gowiem Gowiem merged commit 7f8fc52 into cloudposse:master Feb 17, 2022
@Gowiem
Copy link
Member

Gowiem commented Feb 17, 2022

@kevcube Thanks for the contribution! Released as https://github.com/cloudposse/terraform-aws-ec2-bastion-server/releases/tag/0.30.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bridgecrew bridgecrew[bot] bridgecrew[bot] left review comments

@Gowiem Gowiem Gowiem approved these changes

@dotCipher dotCipher Awaiting requested review from dotCipher dotCipher was automatically assigned from cloudposse/contributors

@milldr milldr Awaiting requested review from milldr milldr was automatically assigned from cloudposse/contributors

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kevcube @Gowiem @cloudpossebot