search

lgulliver / lgulliver.github.io

My blog
https://lgulliver.github.io
MIT License
0 stars 0 forks source link

terrascan-in-azure-devops/ #5

Open utterances-bot opened 3 years ago

utterances-bot commented 3 years ago

Using Terrascan with Azure DevOps - Liam’s Blog

In my last post, I took a look at a new scanning tool called Terrascan. It can be used to ensure your Kubernetes manifests, Terraform and more are compliant with a set of built-in, or customised rules.

https://lgulliver.github.io/terrascan-in-azure-devops/

lgulliver commented 3 years ago

I forgot to note that to be able to add locks, the service connection needs to be an owner or user access administrator for the subscription! Alternatively a custom role that has the requirements you need along with Microsoft.Authorization/*/Write.

AErmie commented 3 years ago

Hey Liam, to publish Terrascan results in an Azure DevOps pipeline, take a look at my blog post: https://adinermie.com/publishing-github-super-linter-terraform-quality-checks-to-azure-devops-pipelines/

lgulliver commented 3 years ago

@aermie That's awesome. I didn't realise you could use Super Linter in Azure DevOps. Thanks for letting me know!