Adds test for security groups to verify process (#34)

Signed-off-by: Sean Sundberg <[email protected]>

Author: Sean Sundberg

.github/scripts/validate-deploy.sh

@@ -33,4 +33,14 @@ if ! ibmcloud is vpc "${VPC_ID}"; then
   exit 1
 fi
 
+echo "Testing security group rules"
+ibmcloud is security-groups --output JSON | \
+  jq --arg VPC_NAME "${VPC_NAME}" '.[] | select(.vpc.name == $VPC_NAME) | .rules[]'
+OPEN_RULES=$(ibmcloud is security-groups --output JSON | jq -c --arg VPC_NAME "${VPC_NAME}" '.[] | select(.vpc.name == $VPC_NAME) | .rules[] | select(.remote.cidr == "0.0.0.0/0")')
+if [[ -n "${OPEN_RULES}" ]]; then
+  echo "Rules found with public internet address"
+  echo "${OPEN_RULES}"
+  exit 1
+fi
+
 exit 0