-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathMakefile
104 lines (89 loc) · 3.17 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
.PHONY: all security lint format documentation validate init commitlint
default: all
all:
$(MAKE) init
$(MAKE) validate
$(MAKE) lint
$(MAKE) security
$(MAKE) format
$(MAKE) documentation
documentation:
@echo "--> Generating documentation"
@terraform-docs .
$(MAKE) documentation-examples
documentation-examples:
@echo "--> Generating documentation examples"
@find . -type d -path '*/examples/*' -not -path '*.terraform*' 2>/dev/null | while read -r dir; do \
echo "--> Generating documentation for $$dir"; \
terraform-docs $$dir; \
done;
init:
@echo "--> Running terraform init"
@terraform init -backend=false
security: init
@echo "--> Running Security checks"
trivy config --format table --exit-code 1 --severity CRITICAL,HIGH --ignorefile .trivyignore .
$(MAKE) security-examples
security-examples:
@echo "--> Running Security checks on examples"
@find . -type d -path '*/examples/*' -not -path '*.terraform*' 2>/dev/null | while read -r dir; do \
echo "--> Validating $$dir"; \
terraform init -backend=false; \
trivy config --format table --exit-code 1 --severity CRITICAL,HIGH --ignorefile .trivyignore $$dir; \
done;
commitlint:
@echo "--> Running commitlint against the main branch"
@command -v commitlint >/dev/null 2>&1 || { echo "commitlint is not installed. Please install it by running 'npm install -g commitlint'"; exit 1; }
@git log --pretty=format:"%s" origin/main..HEAD | commitlint --from=origin/main
lint-examples:
@echo "--> Running tflint on examples"
@find . -type d -path '*/examples/*' -not -path '*.terraform*' 2>/dev/null | while read -r dir; do \
echo "--> Linting $$dir"; \
tflint --chdir=$$dir --init; \
tflint --chdir=$$dir -f compact; \
done;
lint:
@echo "--> Running tflint"
@tflint --init
@tflint -f compact
format:
@echo "--> Running terraform fmt"
@terraform fmt -recursive -write=true
validate-examples:
@echo "--> Running terraform validate on examples"
@find . -type d -path '*/examples/*' -not -path '*.terraform*' 2>/dev/null | while read -r dir; do \
echo "--> Validating $$dir"; \
terraform -chdir=$$dir init -backend=false; \
terraform -chdir=$$dir validate; \
done;
validate:
@echo "--> Running terraform validate"
@terraform init -backend=false
@terraform validate
$(MAKE) lint
$(MAKE) commitlint
$(MAKE) format
$(MAKE) security
$(MAKE) validate-examples
$(MAKE) lint-examples
$(MAKE) security-examples
clean:
@echo "--> Cleaning up"
@find . -type d -name ".terraform" 2>/dev/null | while read -r dir; do \
echo "--> Removing $$dir"; \
rm -rf $$dir; \
done