Update Terraform and IaC tools with Terratest integration

Upgrade development environment with latest IaC tooling:
- Terraform to 1.12.1
- Terraform Docs to 0.20.0
- Checkov to 3.2.439
- Terragrunt to 0.50.1
- Other tools (TFSec, TFLint, Terrascan, Infracost)
- Add Terratest 0.49.0 for infrastructure testing

Author: valter-silva-au

.devcontainer/Dockerfile

@@ -2,17 +2,18 @@ ARG VARIANT="jammy"
 FROM mcr.microsoft.com/vscode/devcontainers/base:0-${VARIANT}
 
 # Set versions as arguments
-ARG TERRAFORM_VERSION="1.5.7"
-ARG TERRAFORM_DOCS_VERSION="0.16.0"
-ARG TFSEC_VERSION="1.28.0"
-ARG TERRASCAN_VERSION="1.18.3"
-ARG TFLINT_VERSION="0.47.0"
+ARG TERRAFORM_VERSION="1.12.1"
+ARG TERRAFORM_DOCS_VERSION="0.20.0"
+ARG TFSEC_VERSION="1.28.13"
+ARG TERRASCAN_VERSION="1.19.9"
+ARG TFLINT_VERSION="0.48.0"
 ARG TFLINT_AWS_RULESET_VERSION="0.23.1"
 ARG TFLINT_AZURE_RULESET_VERSION="0.23.0"
 ARG TFLINT_GCP_RULESET_VERSION="0.23.1"
-ARG TERRAGRUNT_VERSION="0.48.0"
-ARG INFRACOST_VERSION="0.10.28"
-ARG CHECKOV_VERSION="2.3.360"
+ARG TERRAGRUNT_VERSION="0.50.1"
+ARG TERRATEST_VERSION="0.49.0"
+ARG INFRACOST_VERSION="0.10.41"
+ARG CHECKOV_VERSION="3.2.439"
 
 # Copy library scripts
 COPY library-scripts/*.sh /tmp/library-scripts/
@@ -36,6 +37,7 @@ RUN /tmp/library-scripts/terraform-tools.sh \
     "${TFLINT_AZURE_RULESET_VERSION}" \
     "${TFLINT_GCP_RULESET_VERSION}" \
     "${TERRAGRUNT_VERSION}" \
+    "${TERRATEST_VERSION}" \
     "${INFRACOST_VERSION}" \
     "${CHECKOV_VERSION}"
 

.devcontainer/devcontainer.json

@@ -4,22 +4,23 @@
     "dockerfile": "Dockerfile",
     "args": {
       "VARIANT": "ubuntu-22.04",
-      "TERRAFORM_VERSION": "1.5.7",
-      "TERRAFORM_DOCS_VERSION": "0.16.0",
-      "TFSEC_VERSION": "1.28.0",
-      "TERRASCAN_VERSION": "1.18.3",
-      "TFLINT_VERSION": "0.47.0",
+      "TERRAFORM_VERSION": "1.12.1",
+      "TERRAFORM_DOCS_VERSION": "0.20.0",
+      "TFSEC_VERSION": "1.28.13",
+      "TERRASCAN_VERSION": "1.19.9",
+      "TFLINT_VERSION": "0.48.0",
       "TFLINT_AWS_RULESET_VERSION": "0.23.1",
       "TFLINT_AZURE_RULESET_VERSION": "0.23.0",
       "TFLINT_GCP_RULESET_VERSION": "0.23.1",
-      "TERRAGRUNT_VERSION": "0.48.0",
-      "INFRACOST_VERSION": "0.10.28",
-      "CHECKOV_VERSION": "2.3.360"
+      "TERRAGRUNT_VERSION": "0.50.1",
+      "TERRATEST_VERSION": "0.49.0",
+      "INFRACOST_VERSION": "0.10.41",
+      "CHECKOV_VERSION": "3.2.439"
     }
   },
   "postStartCommand": "post-start",
   "remoteUser": "vscode",
-  
+
   // Configure tool-specific properties
   "customizations": {
     "vscode": {
@@ -44,7 +45,7 @@
         "ms-python.python",
         "ms-python.vscode-pylance"
       ],
-      
+
       // Set *default* container specific settings.json values on container create
       "settings": {
         "terminal.integrated.defaultProfile.linux": "bash",
@@ -61,7 +62,7 @@
         "files.trimTrailingWhitespace": true,
         "files.insertFinalNewline": true,
         "files.trimFinalNewlines": true,
-        
+
         // Terraform settings
         "[terraform]": {
           "editor.defaultFormatter": "hashicorp.terraform",
@@ -78,14 +79,14 @@
           "args": []
         },
         "terraform.experimentalFeatures.validateOnSave": true,
-        
+
         // YAML settings
         "[yaml]": {
           "editor.defaultFormatter": "redhat.vscode-yaml",
           "editor.formatOnSave": true,
           "editor.tabSize": 2
         },
-        
+
         // Markdown settings
         "[markdown]": {
           "editor.defaultFormatter": "yzhang.markdown-all-in-one",
@@ -94,7 +95,7 @@
       }
     }
   },
-  
+
   // Mount host volumes for credentials and caching
   "mounts": [
     "source=${localEnv:HOME}${localEnv:USERPROFILE}/.aws,target=/home/vscode/.aws,type=bind,consistency=cached",
@@ -103,10 +104,10 @@
     "source=${localEnv:HOME}${localEnv:USERPROFILE}/.ssh,target=/home/vscode/.ssh,type=bind,consistency=cached",
     "source=terraform-cache,target=/home/vscode/.terraform.d/plugin-cache,type=volume"
   ],
-  
+
   // Use 'forwardPorts' to make a list of ports inside the container available locally
   // "forwardPorts": [],
-  
+
   // Features to add to the dev container
   "features": {
     "ghcr.io/devcontainers/features/github-cli:1": {},
@@ -115,7 +116,7 @@
       "ppa": false
     }
   },
-  
+
   // Environment variables
   "containerEnv": {
     "TF_PLUGIN_CACHE_DIR": "/home/vscode/.terraform.d/plugin-cache"

.devcontainer/library-scripts/terraform-tools.sh

@@ -4,17 +4,18 @@ set -e
 # This script installs Terraform and related tools
 
 # Versions
-TERRAFORM_VERSION=${1:-"1.5.7"}
-TERRAFORM_DOCS_VERSION=${2:-"0.16.0"}
-TFSEC_VERSION=${3:-"1.28.0"}
-TERRASCAN_VERSION=${4:-"1.18.3"}
-TFLINT_VERSION=${5:-"0.47.0"}
+TERRAFORM_VERSION=${1:-"1.12.1"}
+TERRAFORM_DOCS_VERSION=${2:-"0.20.0"}
+TFSEC_VERSION=${3:-"1.28.13"}
+TERRASCAN_VERSION=${4:-"1.19.9"}
+TFLINT_VERSION=${5:-"0.48.0"}
 TFLINT_AWS_RULESET_VERSION=${6:-"0.23.1"}
 TFLINT_AZURE_RULESET_VERSION=${7:-"0.23.0"}
 TFLINT_GCP_RULESET_VERSION=${8:-"0.23.1"}
-TERRAGRUNT_VERSION=${9:-"0.48.0"}
-INFRACOST_VERSION=${10:-"0.10.28"}
-CHECKOV_VERSION=${11:-"2.3.360"}
+TERRAGRUNT_VERSION=${9:-"0.50.1"}
+TERRATEST_VERSION=${10:-"0.49.0"}
+INFRACOST_VERSION=${11:-"0.10.41"}
+CHECKOV_VERSION=${12:-"3.2.439"}
 
 echo "Installing Terraform v${TERRAFORM_VERSION}..."
 curl -sSL -o /tmp/terraform.zip "https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_linux_amd64.zip"
@@ -66,6 +67,32 @@ curl -sSLo /tmp/terragrunt "https://github.com/gruntwork-io/terragrunt/releases/
 sudo mv /tmp/terragrunt /usr/local/bin/
 sudo chmod +x /usr/local/bin/terragrunt
 
+echo "Installing Terratest v${TERRATEST_VERSION}..."
+# Terratest is a Go library, so we'll set an environment variable to track the version
+echo "export TERRATEST_VERSION=${TERRATEST_VERSION}" >> /home/vscode/.bashrc
+
+# Install Go if not already installed
+if ! command -v go &> /dev/null; then
+    echo "Installing Go (required for Terratest)..."
+    GO_VERSION="1.20.5"
+    curl -sSLo /tmp/go.tar.gz "https://golang.org/dl/go${GO_VERSION}.linux-amd64.tar.gz"
+    sudo tar -C /usr/local -xzf /tmp/go.tar.gz
+    echo 'export PATH=$PATH:/usr/local/go/bin' >> /home/vscode/.bashrc
+    echo 'export PATH=$PATH:$HOME/go/bin' >> /home/vscode/.bashrc
+    rm -f /tmp/go.tar.gz
+fi
+
+# Create a simple wrapper script for terratest
+cat > /tmp/terratest << EOF
+#!/bin/bash
+echo "Terratest v${TERRATEST_VERSION}"
+echo "Terratest is a Go library for testing infrastructure code."
+echo "To use Terratest, add it to your Go project:"
+echo "go get github.com/gruntwork-io/terratest@v${TERRATEST_VERSION}"
+EOF
+sudo mv /tmp/terratest /usr/local/bin/
+sudo chmod +x /usr/local/bin/terratest
+
 echo "Installing Infracost v${INFRACOST_VERSION}..."
 curl -sSLo /tmp/infracost.tar.gz "https://github.com/infracost/infracost/releases/download/v${INFRACOST_VERSION}/infracost-linux-amd64.tar.gz"
 tar -xzf /tmp/infracost.tar.gz -C /tmp
@@ -94,4 +121,4 @@ EOF
 # Set ownership for the config file
 chown -R vscode:vscode /home/vscode/.tflint.d
 
-echo "Terraform tools installation complete!"
+echo "Terraform tools installation complete!"

.devcontainer/post-start.sh

@@ -30,6 +30,7 @@ echo "TFLint: $(tflint --version)"
 echo "TFSec: $(tfsec --version)"
 echo "Terrascan: $(terrascan version)"
 echo "Terragrunt: $(terragrunt --version)"
+echo "Terratest: v$(terratest | head -n 1 | cut -d 'v' -f 2)"
 echo "Checkov: $(checkov --version)"
 echo "Pre-commit: $(pre-commit --version)"
 echo ""

.vscode/settings.json

@@ -6,9 +6,9 @@
   "editor.rulers": [120],
   "editor.renderWhitespace": "boundary",
   "editor.codeActionsOnSave": {
-    "source.fixAll": true
+    "source.fixAll": "explicit"
   },
-  
+
   // Files settings
   "files.trimTrailingWhitespace": true,
   "files.insertFinalNewline": true,
@@ -22,7 +22,7 @@
     "**/.terraform": true,
     ".terraform.lock.hcl": true
   },
-  
+
   // Terraform settings
   "[terraform]": {
     "editor.defaultFormatter": "hashicorp.terraform",
@@ -39,33 +39,33 @@
     "args": []
   },
   "terraform.experimentalFeatures.validateOnSave": true,
-  
+
   // YAML settings
   "[yaml]": {
     "editor.defaultFormatter": "redhat.vscode-yaml",
     "editor.formatOnSave": true,
     "editor.tabSize": 2
   },
-  
+
   // Markdown settings
   "[markdown]": {
     "editor.defaultFormatter": "yzhang.markdown-all-in-one",
     "editor.formatOnSave": true
   },
-  
+
   // Terminal settings
   "terminal.integrated.defaultProfile.linux": "bash",
   "terminal.integrated.profiles.linux": {
     "bash": {
       "path": "/bin/bash"
     }
   },
-  
+
   // Git settings
   "git.autofetch": true,
   "git.enableSmartCommit": true,
   "git.confirmSync": false,
-  
+
   // Spell checker settings
   "cSpell.enabled": true,
   "cSpell.words": [

CHANGELOG.md

@@ -5,6 +5,25 @@ All notable changes to the Terraform Development Environment will be documented
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [1.2.3] - 2025-06-11
+
+### Added
+
+- Added terratest v0.49.0 for infrastructure testing
+
+### Changed
+
+- Updated tool versions:
+  - Terraform CLI from v1.5.7 to v1.12.1
+  - AWS CLI from v2 to v2.27.26
+  - terraform-docs from v0.16.0 to v0.20.0
+  - tflint from v0.47.0 to v0.48.0
+  - tfsec from v1.28.0 to v1.28.13
+  - terrascan from v1.18.3 to v1.19.9
+  - terragrunt from v0.48.0 to v0.50.1
+  - infracost from v0.10.28 to v0.10.41
+  - checkov from v2.3.360 to v3.2.439
+
 ## [1.2.2] - 2025-06-10
 
 ### Added

README.md

@@ -36,17 +36,18 @@ A comprehensive VS Code Dev Container with tools to help you build and manage in
 
 | Tool | Version | Description |
 |------|---------|-------------|
-| Terraform | 1.5.7 | Infrastructure as Code tool |
-| AWS CLI | v2 | Command line interface for AWS |
+| Terraform | 1.12.1 | Infrastructure as Code tool |
+| AWS CLI | 2.27.26 | Command line interface for AWS |
 | Azure CLI | Latest | Command line interface for Azure |
 | Google Cloud SDK | Latest | Command line interface for GCP |
-| terraform-docs | 0.16.0 | Documentation generator for Terraform modules |
-| tflint | 0.47.0 | Terraform linter |
-| tfsec | 1.28.0 | Security scanner for Terraform code |
-| terrascan | 1.18.3 | Detect compliance and security violations |
-| terragrunt | 0.48.0 | Thin wrapper for Terraform that provides extra tools |
-| infracost | 0.10.28 | Cloud cost estimates for Terraform |
-| checkov | 2.3.360 | Static code analysis tool for IaC |
+| terraform-docs | 0.20.0 | Documentation generator for Terraform modules |
+| tflint | 0.48.0 | Terraform linter |
+| tfsec | 1.28.13 | Security scanner for Terraform code |
+| terrascan | 1.19.9 | Detect compliance and security violations |
+| terragrunt | 0.50.1 | Thin wrapper for Terraform that provides extra tools |
+| terratest | v0.49.0 | Testing utility for infrastructure code |
+| infracost | 0.10.41 | Cloud cost estimates for Terraform |
+| checkov | 3.2.439 | Static code analysis tool for IaC |
 | pre-commit | Latest | Framework for managing git pre-commit hooks |
 
 ## Authentication

tools.env

@@ -1,5 +1,5 @@
 GITIGNORE=macos,windows,linux,visualstudiocode,python,node,terraform
 TFLINT_AWS_RULESET_VERSION=0.21.1
-TERRAFORM_DOCS_VERSION=0.16.0
-TERRASCAN_VERSION=1.17.1
-TFSEC_VERSION=1.28.1
+TERRAFORM_DOCS_VERSION=0.20.0
+TERRASCAN_VERSION=1.19.9
+TFSEC_VERSION=1.28.13