[COMPLIANCE] Add Copyright and License Headers

governance/first-generation/aws/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "restrict-aws-region" {
     enforcement_level = "soft-mandatory"
 }

governance/first-generation/external/check_account.sh

@@ -1,4 +1,7 @@
 #!/bin/bash
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 
 #set -e
 

governance/first-generation/external/check_account.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 terraform {
   required_version = ">= 0.11.7"
 }

governance/second-generation/aws/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "enforce-mandatory-tags" {
     enforcement_level = "advisory"
 }

governance/second-generation/azure/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "enforce-mandatory-tags" {
     enforcement_level = "advisory"
 }

governance/second-generation/cloud-agnostic/http-examples/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "check-external-http-api" {
     enforcement_level = "advisory"
 }

governance/second-generation/cloud-agnostic/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "prohibited-datasources" {
     enforcement_level = "advisory"
 }

governance/second-generation/gcp/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "enforce-mandatory-labels" {
     enforcement_level = "advisory"
 }

governance/second-generation/vmware/sentinel.hcl

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 policy "restrict-vm-cpu-and-memory" {
     enforcement_level = "advisory"
 }

infrastructure-as-code/aws-ec2-instance/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 terraform {
   required_version = ">= 0.11.0"
 }

infrastructure-as-code/aws-ec2-instance/outputs.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 output "public_dns" {
   value = "${aws_instance.ubuntu.public_dns}"
 }

infrastructure-as-code/aws-ec2-instance/variables.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 variable "aws_region" {
   description = "AWS region"
   default = "us-west-1"

infrastructure-as-code/aws-lambda-ec2-lifecycles/asg_data_collectors.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # These lambda functions return dictionaries of instances. 
 # Use them with other functions to take action on tagged, untagged
 # or running instances.

infrastructure-as-code/aws-lambda-ec2-lifecycles/asg_reaper.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Checks the TTL of your instances, if expired can stop or terminate them.                         
 resource "aws_lambda_function" "ASGReaper" {
   filename         = "./files/ASGReaper.zip"

infrastructure-as-code/aws-lambda-ec2-lifecycles/asg_untagged_janitor.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # This lambda is intended to deal with untagged Auto Scaling Groups.
 resource "aws_lambda_function" "ASGJanitor" {
   filename         = "./files/ASGJanitor.zip"

infrastructure-as-code/aws-lambda-ec2-lifecycles/ec2_data_collectors.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # These lambda functions return dictionaries of instances. 
 # Use them with other functions to take action on tagged, untagged
 # or running instances.

infrastructure-as-code/aws-lambda-ec2-lifecycles/ec2_reaper.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Checks the TTL of your instances, if expired can stop or terminate them.                         
 resource "aws_lambda_function" "EC2Reaper" {
   filename         = "./files/EC2Reaper.zip"

infrastructure-as-code/aws-lambda-ec2-lifecycles/ec2_untagged_janitor.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # This lambda is intended to deal with untagged instances by either stopping
 # and then terminating them according to your lifecycle policy.
 resource "aws_lambda_function" "EC2Janitor" {

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/ASGJanitor.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # This function deals with ASGs that are untagged. 
 # TODO: Actually write the code to make it work.
 

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/ASGReaper.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # This function uses the getTaggedASGs.py function to fetch a list of properly tagged ASGs.
 # It will then determine whether those ASGs have expired, and delete them if they have.
 # Finally a message is sent to Slack or Email to notify your admins.

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/EC2Janitor.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # This function deals with instances that are untagged.  Use the environment variables 
 # sleepDays and reapDays to set your lifecycle policies.
 

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/EC2Reaper.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # General purpose Lambda function for sending Slack messages, encrypted in transit.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getInstanceReport.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Example functions for AWS reporting. Use as a base to build your own.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getRunningInstances.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 import boto3
 import json
 import logging

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getTaggedASGs.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Gets a list of properly tagged ASGs and returns some info about them.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getTaggedInstances.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 import boto3
 import json
 import logging

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getUntaggedASGs.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Gets a list of untagged ASGs and returns some info about them.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/getUntaggedInstances.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 import boto3
 import json
 import logging

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/notifyInstanceUsage.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # General purpose Lambda function for sending Slack messages, encrypted in transit.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/files/notifyUntaggedInstances.py

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # General purpose Lambda function for sending Slack messages, encrypted in transit.
 
 import boto3

infrastructure-as-code/aws-lambda-ec2-lifecycles/iam_roles.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # IAM roles to allow Lambda functions to access different AWS resources.
 
 # Fetch our own account id and region. Used in our IAM policy templates.

infrastructure-as-code/aws-lambda-ec2-lifecycles/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Terraform configurations for creating lambda functions to help manage
 # your ec2 instance lifecycles. The data_collectors.tf and iam_roles.tf
 # files are required. You may also use one or more of the following:

infrastructure-as-code/aws-lambda-ec2-lifecycles/notify_instance_usage.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Notify slack about the # of each instance type you have running.
 resource "aws_lambda_function" "notifyInstanceUsage" {
   filename         = "./files/notifyInstanceUsage.zip"

infrastructure-as-code/aws-lambda-ec2-lifecycles/notify_untagged.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Notify about untagged instances and their key names.                           
 resource "aws_lambda_function" "notifyUntaggedInstances" {
   filename         = "./files/notifyUntaggedInstances.zip"

infrastructure-as-code/aws-lambda-ec2-lifecycles/outputs.tf

@@ -0,0 +1,3 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+

infrastructure-as-code/aws-lambda-ec2-lifecycles/variables.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 variable "region" {
   default     = "us-west-2"
   description = "AWS Region"

infrastructure-as-code/azure-vm/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 terraform {
   required_version = ">= 0.11.1"
 }

infrastructure-as-code/dynamic-aws-creds-from-vault/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 terraform {
   required_version = ">= 0.11.0"
 }

infrastructure-as-code/dynamic-aws-creds-from-vault/networks-firewalls-ingress.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 resource "aws_security_group_rule" "ssh" {
   security_group_id = "${aws_security_group.egress_public.id}"
   type              = "ingress"

infrastructure-as-code/dynamic-aws-creds-from-vault/networks-firewalls.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 resource "aws_security_group" "egress_public" {
   name        = "${var.environment_name}-egress_public"
   description = "${var.environment_name}-egress_public"

infrastructure-as-code/dynamic-aws-creds-from-vault/networks-gateways.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 resource "aws_internet_gateway" "main" {
   vpc_id = "${aws_vpc.main.id}"
 

infrastructure-as-code/dynamic-aws-creds-from-vault/networks-routes.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 #
 # Public
 #

infrastructure-as-code/dynamic-aws-creds-from-vault/networks-subnets.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 resource "aws_subnet" "public" {
   count = "${length(var.vpc_cidrs_public)}"
 

infrastructure-as-code/dynamic-aws-creds-from-vault/networks.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 resource "aws_vpc" "main" {
   cidr_block           = "${var.vpc_cidr}"
   enable_dns_hostnames = true

infrastructure-as-code/dynamic-aws-creds-from-vault/outputs.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Outputs
 output "vpc_id" {
   value = "${aws_vpc.main.id}"

infrastructure-as-code/dynamic-aws-creds-from-vault/variables.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # Required variables
 variable "environment_name" {
   description = "Environment Name"

infrastructure-as-code/dynamic-aws-creds/consumer-workspace/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 variable "name" { default = "dynamic-aws-creds-consumer" }
 variable "path" { default = "../producer-workspace/terraform.tfstate" }
 variable "ttl"  { default = "1" }

infrastructure-as-code/dynamic-aws-creds/producer-workspace/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 variable "aws_access_key" { }
 variable "aws_secret_key" { }
 variable "name"           { default = "dynamic-aws-creds-producer" }

infrastructure-as-code/gcp-compute-instance/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 terraform {
   required_version = ">= 0.11.1"
 }

infrastructure-as-code/hashistack/best-practices/terraform-aws/gitignore.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # `.tf` files that contain the word "gitignore" are ignored
 # by git in the `.gitignore` file at the root of this repo.
 

infrastructure-as-code/hashistack/best-practices/terraform-aws/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 module "ssh_keypair_aws_override" {
   source = "github.com/hashicorp-modules/ssh-keypair-aws"
 

infrastructure-as-code/hashistack/best-practices/terraform-aws/outputs.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 output "zREADME" {
   value = <<README
 

infrastructure-as-code/hashistack/best-practices/terraform-aws/terraform.auto.tfvars

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # ---------------------------------------------------------------------------------------------------------------------
 # General Variables
 # ---------------------------------------------------------------------------------------------------------------------

infrastructure-as-code/hashistack/best-practices/terraform-aws/variables.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # ---------------------------------------------------------------------------------------------------------------------
 # General Variables
 # ---------------------------------------------------------------------------------------------------------------------

infrastructure-as-code/hashistack/dev/terraform-aws/gitignore.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 # `.tf` files that contain the word "gitignore" are ignored
 # by git in the `.gitignore` file at the root of this repo.
 

infrastructure-as-code/hashistack/dev/terraform-aws/main.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 module "ssh_keypair_aws" {
   source = "github.com/hashicorp-modules/ssh-keypair-aws"
 }

infrastructure-as-code/hashistack/dev/terraform-aws/outputs.tf

@@ -1,3 +1,6 @@
+# Copyright (c) HashiCorp, Inc.
+# SPDX-License-Identifier: MPL-2.0
+
 output "zREADME" {
   value = <<README