Terrascan
This plugin allows you to scan the Terraform code with Terrascan
and provide output.
Terrascan
is a static code analyzer for Infrastructure as Code.
It provides 500+ out-of-the-box policies so that you can scan IaC against common policy standards such as the CIS Benchmark.

Configuration options
Name: This is Brainboard field to describe what this task is about.
Version: always points to the latest version.
Extra environment variables: variables that you can define here that will be used as environment variables in the execution shell.
Scan rules: specify rules to scan, example: –scan-rules=“ruleID1,ruleID2”.
Skip rules: specify one or more rules to skip while scanning:
Example: –skip-rules=“ruleID1,ruleID2”
No space is added after the comma in the list
Ignore failure: this will put the task in a non-blocking failure, which means, the execution of the following stage will be triggered even if the task fails.
Require approval: means that this task will not be executed until approved by people added in the approvers' list.
The task remains blocked until all approvers added in the list approve it.
When enabled, it allows you to add approvers to the list
The approver has to be Brainboard user
Show passed: display passed rules, along with violations.
Sample output

Last updated
Was this helpful?