Role to install (by default) tfsec on Debian/Ubuntu and EL systems. tfsec is a static analysis (security based) for scanning terraform code. originally developed by Liam Galvin.
None.
Available variables are listed below (located in defaults/main.yml):
tfsec_app: tfsec
tfsec_version: 0.39.32
tfsec_osarch: linux-amd64
tfsec_dl_url: https://github.com/liamg/{{ tfsec_app }}/releases/download/v{{ tfsec_version }}/{{ tfsec_app }}-{{ tfsec_osarch }}
tfsec_bin_path: "/usr/local/bin/{{ tfsec_app }}"
tfsec_bin_permission_mode: '0755'| Variable | Value (default) | Description |
|---|---|---|
| tfsec_app | tfsec | Defines the app to install i.e. tfsec |
| tfsec_version | 0.39.32 | Defined to dynamically fetch the desired version to install. Defaults to: 0.39.32 |
| tfsec_osarch | linux-amd64 | Defines os architecture. Used for obtaining the correct type of binaries based on OS System Architecture. Defaults to: linux-amd64 |
| tfsec_dl_url | https://github.com/liamg/{{ tfsec_app }}/releases/download/v{{ tfsec_version }}/{{ tfsec_app }}-{{ tfsec_osarch }} | Defines URL to download the tfsec binary from. |
| tfsec_bin_path | "/usr/local/bin/{{ tfsec_app }}" | Defined to dynamically set the appropriate path to store tfsec binary into. Defaults to (as generally available on any user's PATH): /usr/local/bin/tfsec |
| tfsec_bin_permission_mode | '0755' | Defines the permission mode level for the file. |
None
For default behaviour of role (i.e. installation of tfsec) in ansible playbooks.
- hosts: servers
roles:
- darkwizard242.tfsecFor customizing behavior of role (i.e. specifying the desired tfsec version) in ansible playbooks.
- hosts: servers
roles:
- darkwizard242.tfsec
vars:
tfsec_version: 0.18.0For customizing behavior of role (i.e. placing binary of tfsec package in different location) in ansible playbooks.
- hosts: servers
roles:
- darkwizard242.tfsec
vars:
tfsec_bin_path: /bin/This role was created by Ali Muhammad.