made changes in github actions

Author: rahul-infra

.github/workflows/terraform-checks.yaml

@@ -12,6 +12,12 @@ jobs:
     name: Test
     runs-on: ubuntu-latest
     steps:
+      - name: Checkout
+        uses: actions/checkout@v5
+        with:
+          fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
+
       - name: Setup Terraform
         uses: hashicorp/setup-terraform@v3
         with:
@@ -55,6 +61,9 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@v5
+        with:
+          fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
 
       - name: Get root directories
         id: dirs
@@ -67,8 +76,8 @@ jobs:
     strategy:
       matrix:
         directory: ${{ fromJson(needs.collectInputs.outputs.directories) }}
+
     steps:
-      # https://github.com/orgs/community/discussions/25678#discussioncomment-5242449
       - name: Delete huge unnecessary tools folder
         run: |
           rm -rf /opt/hostedtoolcache/CodeQL
@@ -78,24 +87,25 @@ jobs:
 
       - name: Checkout
         uses: actions/checkout@v5
+        with:
+          fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
 
       - name: Terraform min/max versions
         id: minMax
         uses: clowdhaus/[email protected]
         with:
           directory: ${{ matrix.directory }}
       - name: Pre-commit Terraform ${{ steps.minMax.outputs.minVersion }}
-        # Run only validate pre-commit check on min version supported
-        if: ${{ matrix.directory !=  '.' }}
+        if: ${{ matrix.directory != '.' }}
         uses: clowdhaus/terraform-composite-actions/[email protected]
         with:
           terraform-version: ${{ steps.minMax.outputs.minVersion }}
           tflint-version: ${{ env.TFLINT_VERSION }}
           args: 'terraform_validate --color=always --show-diff-on-failure --files ${{ matrix.directory }}/*'
 
       - name: Pre-commit Terraform ${{ steps.minMax.outputs.minVersion }}
-        # Run only validate pre-commit check on min version supported
-        if: ${{ matrix.directory ==  '.' }}
+        if: ${{ matrix.directory == '.' }}
         uses: clowdhaus/terraform-composite-actions/[email protected]
         with:
           terraform-version: ${{ steps.minMax.outputs.minVersion }}
@@ -107,7 +117,6 @@ jobs:
     runs-on: ubuntu-latest
     needs: collectInputs
     steps:
-      # https://github.com/orgs/community/discussions/25678#discussioncomment-5242449
       - name: Delete huge unnecessary tools folder
         run: |
           rm -rf /opt/hostedtoolcache/CodeQL
@@ -118,8 +127,8 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v5
         with:
-          ref: ${{ github.event_name == 'pull_request' && github.head_ref || github.ref }}
-          token: ${{ secrets.GITHUB_TOKEN }}
+          fetch-depth: 0
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
 
       - name: Terraform min/max versions
         id: minMax

.pre-commit-config.yaml

@@ -14,8 +14,11 @@ repos:
           - '--args=--only=terraform_typed_variables'
           - '--args=--only=terraform_module_pinned_source'
           - '--args=--only=terraform_naming_convention'
+          - '--args=--only=terraform_required_version'
+          - '--args=--only=terraform_required_providers'
           - '--args=--only=terraform_standard_module_structure'
           - '--args=--only=terraform_workspace_remote'
+          - '--args=--only=terraform_unused_required_providers'
       - id: terraform_validate
         args:
           - --hook-config=--retry-once-with-cleanup=true

main.tf

@@ -15,10 +15,6 @@ data "aws_ssm_parameter" "rds" {
 module "postgres_security_group" {
   source  = "terraform-aws-modules/security-group/aws"
   version = "~> 5.3.0"
-  providers = {
-    aws = aws
-  }
-
 
   name        = local.rds.sg_name
   description = local.rds.sg_description
@@ -49,9 +45,6 @@ module "postgres_security_group" {
 module "kong_rds" {
   source  = "terraform-aws-modules/rds/aws"
   version = "~> 6.13.0"
-  providers = {
-    aws = aws
-  }
 
   identifier           = local.rds.db_identifier
   engine               = local.rds.engine
@@ -93,9 +86,6 @@ module "kong_rds" {
 module "internal_alb_security_group" {
   source  = "terraform-aws-modules/security-group/aws"
   version = "~> 5.3.0"
-  providers = {
-    aws = aws
-  }
 
   name   = local.kong.alb_sg_name
   vpc_id = var.vpc_id
@@ -123,9 +113,6 @@ module "internal_alb_security_group" {
 module "public_alb_security_group" {
   source  = "terraform-aws-modules/security-group/aws"
   version = "~> 5.3.0"
-  providers = {
-    aws = aws
-  }
 
   name   = local.kong.alb_sg_name
   vpc_id = var.vpc_id
@@ -156,9 +143,6 @@ module "public_alb_security_group" {
 module "ecs_task_security_group" {
   source  = "terraform-aws-modules/security-group/aws"
   version = "~> 5.3.0"
-  providers = {
-    aws = aws
-  }
 
   name   = local.kong.ecs_task_sg_name
   vpc_id = var.vpc_id