format: Formatted examples with Terraform fmt

Signed-off-by: Federico Barcelona <[email protected]>

Author: tembleking

examples/alert.tf

@@ -1,8 +1,8 @@
 
 resource "sysdig_monitor_alert_anomaly" "sample" {
-  name = "[Kubernetes] Anomaly Detection Alert"
+  name        = "[Kubernetes] Anomaly Detection Alert"
   description = "Detects an anomaly in the cluster"
-  severity = 6
+  severity    = 6
 
   monitor = ["cpu.used.percent", "memory.bytes.used"]
 
@@ -11,28 +11,28 @@ resource "sysdig_monitor_alert_anomaly" "sample" {
   multiple_alerts_by = ["kubernetes.cluster.name",
     "kubernetes.namespace.name",
     "kubernetes.deployment.name",
-    "kubernetes.pod.name"]
+  "kubernetes.pod.name"]
 }
 
 resource "sysdig_monitor_alert_downtime" "sample" {
-  name = "[Kubernetes] Downtime Alert"
+  name        = "[Kubernetes] Downtime Alert"
   description = "Detects a downtime in the Kubernetes cluster"
-  severity = 2
+  severity    = 2
 
   entities_to_monitor = ["kubernetes.namespace.name"]
 
   trigger_after_minutes = 10
-  trigger_after_pct = 100
+  trigger_after_pct     = 100
 }
 
 resource "sysdig_monitor_alert_event" "sample" {
-  name = "[Kubernetes] Failed to pull image"
+  name        = "[Kubernetes] Failed to pull image"
   description = "A Kubernetes pod failed to pull an image from the registry"
-  severity = 4
+  severity    = 4
 
-  event_name = "Failed to pull image"
-  source = "kubernetes"
-  event_rel = ">"
+  event_name  = "Failed to pull image"
+  source      = "kubernetes"
+  event_rel   = ">"
   event_count = 0
 
   multiple_alerts_by = ["kubernetes.pod.name"]
@@ -41,9 +41,9 @@ resource "sysdig_monitor_alert_event" "sample" {
 }
 
 resource "sysdig_monitor_alert_group_outlier" "sample" {
-  name = "[Kubernetes] A node is using more CPU than the rest"
+  name        = "[Kubernetes] A node is using more CPU than the rest"
   description = "Monitors the cluster and checks when a node has more CPU usage than the others"
-  severity = 6
+  severity    = 6
 
   monitor = ["cpu.used.percent"]
 
@@ -56,17 +56,17 @@ resource "sysdig_monitor_alert_group_outlier" "sample" {
 }
 
 resource "sysdig_monitor_alert_metric" "sample" {
-  name = "[Kubernetes] CrashLoopBackOff"
+  name        = "[Kubernetes] CrashLoopBackOff"
   description = "A Kubernetes pod failed to restart"
-  severity = 6
+  severity    = 6
 
-  metric = "sum(timeAvg(kubernetes.pod.restart.count)) > 2"
+  metric                = "sum(timeAvg(kubernetes.pod.restart.count)) > 2"
   trigger_after_minutes = 1
 
   multiple_alerts_by = ["kubernetes.cluster.name",
     "kubernetes.namespace.name",
     "kubernetes.deployment.name",
-    "kubernetes.pod.name"]
+  "kubernetes.pod.name"]
 
   capture {
     filename = "CrashLoopBackOff"

examples/notification.tf

@@ -1,56 +1,56 @@
 
 resource "sysdig_secure_notification_channel" "sample-email" {
-  name = "Example Channel - Email"
-  enabled = true
-  type = "EMAIL"
-  recipients = "[email protected]"
-  notify_when_ok = false
+  name                 = "Example Channel - Email"
+  enabled              = true
+  type                 = "EMAIL"
+  recipients           = "[email protected]"
+  notify_when_ok       = false
   notify_when_resolved = false
 }
 
 resource "sysdig_secure_notification_channel" "sample-amazon-sns" {
-  name = "Example Channel - Amazon SNS"
-  enabled = true
-  type = "SNS"
-  topics = "arn:aws:sns:us-east-1:273107874544:my-alerts,arn:aws:sns:us-east-1:273107874544:my-alerts2"
-  notify_when_ok = false
+  name                 = "Example Channel - Amazon SNS"
+  enabled              = true
+  type                 = "SNS"
+  topics               = "arn:aws:sns:us-east-1:273107874544:my-alerts,arn:aws:sns:us-east-1:273107874544:my-alerts2"
+  notify_when_ok       = false
   notify_when_resolved = false
 }
 
 resource "sysdig_secure_notification_channel" "sample-victorops" {
-  name = "Example Channel - VictorOps"
-  enabled = true
-  type = "VICTOROPS"
-  api_key = "1234342-4234243-4234-2"
-  routing_key = "My team"
-  notify_when_ok = false
+  name                 = "Example Channel - VictorOps"
+  enabled              = true
+  type                 = "VICTOROPS"
+  api_key              = "1234342-4234243-4234-2"
+  routing_key          = "My team"
+  notify_when_ok       = false
   notify_when_resolved = false
 }
 
 resource "sysdig_secure_notification_channel" "sample-opsgenie" {
-  name = "Example Channel - OpsGenie"
-  enabled = true
-  type = "OPSGENIE"
-  api_key = "2349324-342354353-5324-23"
-  notify_when_ok = false
+  name                 = "Example Channel - OpsGenie"
+  enabled              = true
+  type                 = "OPSGENIE"
+  api_key              = "2349324-342354353-5324-23"
+  notify_when_ok       = false
   notify_when_resolved = false
 }
 
 resource "sysdig_secure_notification_channel" "sample-webhook" {
-  name = "Example Channel - Webhook"
-  enabled = true
-  type = "WEBHOOK"
-  url = "localhost:8080"
-  notify_when_ok = false
+  name                 = "Example Channel - Webhook"
+  enabled              = true
+  type                 = "WEBHOOK"
+  url                  = "localhost:8080"
+  notify_when_ok       = false
   notify_when_resolved = false
 }
 
 resource "sysdig_secure_notification_channel" "sample-slack" {
-  name = "Example Channel - Slack"
-  enabled = true
-  type = "SLACK"
-  url = "https://hooks.slack.cwom/services/XXXXXXXXX/XXXXXXXXX/XXXXXXXXXXXXXXXXXXXXXXXX"
-  channel = "#sysdig"
-  notify_when_ok = true
+  name                 = "Example Channel - Slack"
+  enabled              = true
+  type                 = "SLACK"
+  url                  = "https://hooks.slack.cwom/services/XXXXXXXXX/XXXXXXXXX/XXXXXXXXXXXXXXXXXXXXXXXX"
+  channel              = "#sysdig"
+  notify_when_ok       = true
   notify_when_resolved = true
 }

examples/policy.tf

@@ -1,17 +1,17 @@
 
 resource "sysdig_secure_policy" "sample" {
-  name = "Other example of Policy"
+  name        = "Other example of Policy"
   description = "this is other example of policy"
-  enabled = true
-  severity = 4
-  scope = "container.id != \"\""
-  rule_names = ["Terminal shell in container"]
+  enabled     = true
+  severity    = 4
+  scope       = "container.id != \"\""
+  rule_names  = ["Terminal shell in container"]
 
   actions {
     container = "stop"
     capture {
       seconds_before_event = 5
-      seconds_after_event = 10
+      seconds_after_event  = 10
     }
   }
 

examples/rules.tf

@@ -1,70 +1,70 @@
 resource "sysdig_secure_rule_container" "sample" {
-  name = "Other example of Policy"
+  name        = "Other example of Policy"
   description = "this is other example of policy"
-  tags = ["container", "cis"]
+  tags        = ["container", "cis"]
 
-  matching = true // default
+  matching   = true // default
   containers = ["foo", "foo:bar"]
 }
 
-resource "sysdig_secure_rule_filesystem"  "foo" {
-  name = "Other example of Policy"
+resource "sysdig_secure_rule_filesystem" "foo" {
+  name        = "Other example of Policy"
   description = "this is other example of policy"
-  tags = ["filesystem", "cis"]
+  tags        = ["filesystem", "cis"]
 
   read_only {
     matching = true // default
-    paths = ["/etc"]
+    paths    = ["/etc"]
   }
 
   read_write {
     matching = true // default
-    paths = ["/tmp"]
+    paths    = ["/tmp"]
   }
 }
 
 resource "sysdig_secure_rule_network" "foo" {
-  name = "Other example of Policy" // ID
+  name        = "Other example of Policy" // ID
   description = "this is other example of policy"
-  tags = ["network", "cis"]
+  tags        = ["network", "cis"]
 
-  block_inbound = true
+  block_inbound  = true
   block_outbound = true
 
   tcp {
     matching = true // default
-    ports = [80, 443]
+    ports    = [80, 443]
   }
 
   udp {
     matching = true // default
-    ports = [80, 443]
+    ports    = [80, 443]
   }
 }
 
 resource "sysdig_secure_rule_process" "foo" {
-  name = "Other example of Policy" // ID
+  name        = "Other example of Policy" // ID
   description = "this is other example of policy"
 
-  matching = true // default
+  matching  = true // default
   processes = ["bash"]
 }
 
 resource "sysdig_secure_rule_syscall" "foo" {
-  name = "Other example of Policy" // ID
+  name        = "Other example of Policy" // ID
   description = "this is other example of policy"
 
   matching = true // default
   syscalls = ["open", "execve"]
 }
 
 resource "sysdig_secure_rule_falco" "foo" {
-  name = "Other example of Policy" // ID
+  name        = "Other example of Policy" // ID
   description = "this is other example of policy"
-  tags = ["container", "shell", "mitre_execution"]
+  tags        = ["container", "shell", "mitre_execution"]
 
   condition = "spawned_process and container and shell_procs and proc.tty != 0 and container_entrypoint"
-  output = "A shell was spawned in a container with an attached terminal (user=%user.name %container.info shell=%proc.name parent=%proc.pname cmdline=%proc.cmdline terminal=%proc.tty container_id=%container.id image=%container.image.repository)"
-  priority = "notice"
-  source = "syscall" // syscall or k8s_audit
+  output    = "A shell was spawned in a container with an attached terminal (user=%user.name %container.info shell=%proc.name parent=%proc.pname cmdline=%proc.cmdline terminal=%proc.tty container_id=%container.id image=%container.image.repository)"
+  priority  = "notice"
+  source    = "syscall" // syscall or k8s_audit
 }