feat: Added infracost analysis workflow (#72)

Tanveer143s · web-flow · commit 3199546c3f30 · 2023-09-07T12:55:33.000-04:00
diff --git a/.github/workflows/infracost.yml b/.github/workflows/infracost.yml
@@ -0,0 +1,101 @@
+---
+name: Infracost Analysis
+on:
+  workflow_call:
+    inputs:
+      working-directory:
+        required: true
+        description: Working directory of terraform resources
+        type: string
+        default: ./
+      slack_notification:
+        description: Slack notification required or not
+        type: string
+        default: false
+    secrets:
+      INFRACOST_API_KEY:
+        required: true
+        description: Provide Key from infracost api
+      GITHUB:
+        required: true
+        description: GitHub token.
+      SLACK_WEBHOOK:
+        required: false
+        description: Slack webhook url
+jobs:
+  infracost:
+    name: Infracost Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Setup Infracost
+        uses: infracost/actions/setup@6bdd3cb01a306596e8a614e62af7a9c0a133bc5c
+        with:
+          api-key: ${{ secrets.INFRACOST_API_KEY }}
+
+      - name: Checkout base branch
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+        with:
+          ref: ${{ github.event.pull_request.base.ref }}
+
+      - name: Print debug info
+        run: |
+          echo "github base branch is ${{ github.event.pull_request.base.ref }}"
+          echo "github.event.pull_request.number is ${{ github.event.pull_request.number }}"
+
+      - name: Generate Infracost cost estimate baseline
+        run: |
+          export INFRACOST_API_KEY=${{ secrets.INFRACOST_API_KEY }}
+          cd ${{ inputs.working-directory }}
+          infracost breakdown --path . \
+                              --format=json \
+                              --out-file=/tmp/infracost-base.json
+
+      - name: Checkout PR branch
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+
+      - name: Generate Infracost diff
+        run: |
+          export INFRACOST_API_KEY=${{ secrets.INFRACOST_API_KEY }}
+          cd ${{ inputs.working-directory }}
+          infracost diff --path=. \
+                          --format=json \
+                          --show-skipped \
+                          --compare-to=/tmp/infracost-base.json \
+                          --out-file=/tmp/infracost.json
+
+      - name: Generate Infracost Report
+        run: |
+          export INFRACOST_API_KEY=${{ secrets.INFRACOST_API_KEY }}
+          cd ${{ inputs.working-directory }}
+          infracost output --path /tmp/infracost.json --show-skipped --format html --out-file report.html
+
+      - name: Upload current cost in artifactory
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb
+        with:
+          name: report.html
+          path: ${{ inputs.working-directory }}/report.html
+
+      - name: Post Infracost comment
+        run: |
+          export INFRACOST_API_KEY=${{ secrets.INFRACOST_API_KEY }}
+          infracost comment github --path=/tmp/infracost.json \
+                                   --repo=$GITHUB_REPOSITORY \
+                                   --github-token=${{ secrets.GITHUB }} \
+                                   --pull-request=${{ github.event.pull_request.number }} \
+                                   --behavior=update
+
+      - name: Generate Slack message
+        id: infracost-slack
+        run: |
+          echo "::set-output name=slack-message::$(infracost output --path=/tmp/infracost.json --format=slack-message --show-skipped)"
+          echo "::set-output name=diffTotalMonthlyCost::$(jq '(.diffTotalMonthlyCost // 0) | tonumber' /tmp/infracost.json)"
+
+      - name: Send cost estimate to Slack
+        uses: slackapi/slack-github-action@v1
+        if: ${{ inputs.slack_notification == 'true' }}
+        with:
+          payload: ${{ steps.infracost-slack.outputs.slack-message }}
+        env:
+          SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK}}
+          SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK
+...
diff --git a/README.md b/README.md
@@ -62,6 +62,7 @@ Above example is just a simple example to call workflow from github shared workf
 7. [Terraform Checks Workflow](https://github.com/clouddrove/github-shared-workflows/blob/master/docs/terraform-checks.md)
 7. [Checkov Workflow](https://github.com/clouddrove/github-shared-workflows/blob/master/docs/checkov.md)
 8. [Terraform Workflow](https://github.com/clouddrove/github-shared-workflows/blob/master/docs/terraform_workflow.md)
+9. [Infracost workflow](https://github.com/clouddrove/github-shared-workflows/blob/master/docs/infracost.md)
 
 ## Feedback 
 If you come accross a bug or have any feedback, please log it in our [issue tracker](https://github.com/clouddrove/github-shared-workflows/issues), or feel free to drop us an email at [hello@clouddrove.com](mailto:hello@clouddrove.com).
diff --git a/docs/infracost.md b/docs/infracost.md
@@ -0,0 +1,47 @@
+## [Infra-Cost Workflow](https://github.com/clouddrove/github-shared-workflows/blob/master/.github/workflows/infracost.yml)
+Infracost shows cloud cost estimates for Terraform. It lets engineers see a cost breakdown and understand costs before making changes, either in the terminal,VS Code or pull requests.
+It utilizes the workflows defined in `.github/workflows/infracost.yml`
+
+#### Usage
+- With Terraform, you can easily estimate cloud costs by leveraging Infracost, and you can easily compare potential bills between different vendors. Infracost, as they state on their website, makes you love your cloud bill
+- When you create PR we show the difference of cost in a PR comment, and the actual cost report generated in artifactory
+
+#### Get started
+Infracost also has many CI/CD integrations so you can easily post cost estimates in pull requests. This provides your team with a safety net as people can discuss costs as part of the workflow.
+
+First you need to generate **INFRACOST-API-KEY** using following commands on your CLI.
+```
+brew install infracost
+infracost --version
+infracost auth login   # signup here
+infracost configure get api_key  # here we got API-KEY copy this & add in github 
+
+```
+**Infra-cost Api generation Reference Link:** https://www.infracost.io/docs/
+
+#### Example
+
+```yaml
+name: "Infracost analysis"
+permissions: write-all
+
+on:
+  pull_request:
+     branches: [ master ]
+jobs:
+  infracost:
+    uses: clouddrove/github-shared-workflows/.github/workflows/infracost.yml@master
+    with:
+      working-directory:   # Need to specify working-directory as that's where the terraform files live in the source code
+      slack_notification:  # If we need slack notification then its value is true else false
+    secrets:
+      INFRACOST_API_KEY:   # Provide Infra-Cost-API-key
+      GITHUB: # Add github token here
+      SLACK_WEBHOOK:       # If slack_notification is true then add Webhook URL
+```
+
+## When you do some changes in resources, after that create Pull Request in this we shows difference between previous cost & new cost
+Show below picture for more understanding
+
+![image](https://github.com/clouddrove-sandbox/Infra-cost/assets/116706588/4de7eb51-57a2-4165-8332-fea4a9c5311d)
+
