use terraform letast version

Author: theprashantyadav

.github/workflows/terraform.yml

@@ -58,6 +58,7 @@ jobs:
       - name: tflint
         uses: reviewdog/action-tflint@master
         with:
+          tflint_version: v0.29.0
           github_token: ${{ secrets.GITHUB }}
           working_directory: ${{ matrix.directory }}
           fail_on_error: 'true'

.github/workflows/tfsec.yml

@@ -4,22 +4,38 @@ on:
 
 jobs:
   tfsec:
-    name: tfsec sarif report
+    name: Terraform Security Scan
     runs-on: ubuntu-latest
 
     steps:
       - name: Clone repo
         uses: actions/checkout@master
 
-      - name: tfsec
+      - name: tfsec Basic
         uses: aquasecurity/[email protected]
         with:
           sarif_file: tfsec.sarif
-          working_directory: _example
+          working_directory: ./_example/
           full_repo_scan: true
 
       - name: Upload SARIF file
         uses: github/codeql-action/upload-sarif@v1
         with:
           # Path to SARIF file relative to the root of the repository
-          sarif_file: tfsec.sarif
+          sarif_file: tfsec.sarif
+
+      - name: tfsec commenter for PR
+        uses: tfsec/tfsec-pr-commenter-action@main
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB}}
+          working_directory: ./_example/
+
+      - name: 'Terraform security scan Advanced'
+        uses: triat/[email protected]
+        if: github.event_name == 'pull_request'
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB}}
+          tfsec_actions_working_dir: ./_example/
+          tfsec_actions_comment: true
+          tfsec_output_format: sarif
+        continue-on-error: true

README.yaml

@@ -43,7 +43,7 @@ usage : |-
   ```hcl
   module "acm" {
     source                   = "clouddrove/acm/aws"
-    version                  = "1.0.1"
+    version                  = "1.3.0"
     name                     = "certificate"
     environment              = "test"
     label_order              = ["name","environment"]
@@ -58,7 +58,7 @@ usage : |-
   ```hcl
   module "acm" {
     source                = "clouddrove/acm/aws"
-    version               = "1.0.1"
+    version               = "1.3.0"
     name                  = "certificate"
     environment           = "test"
     label_order          = ["name","environment"]
@@ -73,7 +73,7 @@ usage : |-
   ```hcl
   module "acm" {
     source              = "clouddrove/acm/aws"
-    version             = "1.0.1"
+    version             = "1.3.0"
     name                = "certificate"
     environment         = "test"
     label_order         = ["name","environment"]

_example/generate-certificate-dns/versions.tf

@@ -1,10 +1,11 @@
 # Terraform version
 terraform {
-  required_version = ">= 0.14.11"
+  required_version = ">= 1.3.6"
+
   required_providers {
     aws = {
       source  = "hashicorp/aws"
-      version = ">= 3.1.15"
+      version = ">= 4.48.0"
     }
   }
-}
+}

_example/generate-certificate-email/versions.tf

@@ -1,10 +1,11 @@
 # Terraform version
 terraform {
-  required_version = ">= 0.14.11"
+  required_version = ">= 1.3.6"
+
   required_providers {
     aws = {
       source  = "hashicorp/aws"
-      version = ">= 3.1.15"
+      version = ">= 4.48.0"
     }
   }
-}
+}

_example/import-certificate/versions.tf

@@ -1,10 +1,11 @@
 # Terraform version
 terraform {
-  required_version = ">= 0.14.11"
+  required_version = ">= 1.3.6"
+
   required_providers {
     aws = {
       source  = "hashicorp/aws"
-      version = ">= 3.1.15"
+      version = ">= 4.48.0"
     }
   }
-}
+}

main.tf

@@ -8,7 +8,7 @@
 #              convention.
 module "labels" {
   source  = "clouddrove/labels/aws"
-  version = "0.15.0"
+  version = "1.3.0"
 
   name        = var.name
   environment = var.environment