terraform-linters
diff --git a/‎LICENSE‎
Lines changed: 373 additions & 0 deletions b/‎LICENSE‎
Lines changed: 373 additions & 0 deletions
diff --git a/‎Makefile‎
Lines changed: 1 addition & 1 deletion b/‎Makefile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎README.md‎
Lines changed: 30 additions & 24 deletions b/‎README.md‎
Lines changed: 30 additions & 24 deletions
diff --git a/‎docs/rules/README.md‎
Lines changed: 24 additions & 0 deletions b/‎docs/rules/README.md‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎docs/rules/terraform_comment_syntax.md‎
Lines changed: 32 additions & 0 deletions b/‎docs/rules/terraform_comment_syntax.md‎
Lines changed: 32 additions & 0 deletions
diff --git a/‎docs/rules/terraform_deprecated_index.md‎
Lines changed: 32 additions & 0 deletions b/‎docs/rules/terraform_deprecated_index.md‎
Lines changed: 32 additions & 0 deletions
diff --git a/‎docs/rules/terraform_deprecated_interpolation.md‎
Lines changed: 38 additions & 0 deletions b/‎docs/rules/terraform_deprecated_interpolation.md‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎docs/rules/terraform_documented_outputs.md‎
Lines changed: 49 additions & 0 deletions b/‎docs/rules/terraform_documented_outputs.md‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎docs/rules/terraform_documented_variables.md‎
Lines changed: 49 additions & 0 deletions b/‎docs/rules/terraform_documented_variables.md‎
Lines changed: 49 additions & 0 deletions
diff --git a/‎docs/rules/terraform_empty_list_equality.md‎
Lines changed: 36 additions & 0 deletions b/‎docs/rules/terraform_empty_list_equality.md‎
Lines changed: 36 additions & 0 deletions
@@ -8,4 +8,4 @@ build:
 
 install: build
 	mkdir -p ~/.tflint.d/plugins
-	mv ./tflint-ruleset-template ~/.tflint.d/plugins
+	mv ./tflint-ruleset-terraform ~/.tflint.d/plugins
@@ -1,42 +1,40 @@
-# TFLint Ruleset Template
-[![Build Status](https://github.com/terraform-linters/tflint-ruleset-template/workflows/build/badge.svg?branch=main)](https://github.com/terraform-linters/tflint-ruleset-template/actions)
+# TFLint Ruleset for Terraform Language
+[![Build Status](https://github.com/terraform-linters/tflint-ruleset-terraform/workflows/build/badge.svg?branch=main)](https://github.com/terraform-linters/tflint-ruleset-terraform/actions)
+[![GitHub release](https://img.shields.io/github/release/terraform-linters/tflint-ruleset-terraform.svg)](https://github.com/terraform-linters/tflint-ruleset-terraform/releases/latest)
+[![License: MPL 2.0](https://img.shields.io/badge/License-MPL%202.0-blue.svg)](LICENSE)
 
-This is a template repository for building a custom ruleset. You can create a plugin repository from "Use this template". See also [Writing Plugins](https://github.com/terraform-linters/tflint/blob/master/docs/developer-guide/plugins.md).
+TFLint ruleset plugin for Terraform Language
+
+This ruleset focus on possible errors and best practices about Terraform Language.
 
 ## Requirements
 
-- TFLint v0.35+
+- TFLint v0.40+
 - Go v1.18
 
 ## Installation
 
-You can install the plugin with `tflint --init`. Declare a config in `.tflint.hcl` as follows:
+This ruleset is built into TFLint, so you usually don't need to worry about how to install it. You can check the built-in version with `tflint -v`:
+
+```
+$ tflint -v
+TFLint version 0.40.0
++ ruleset.terraform (0.1.0-bundled)
+```
+
+If you want to use a version different from the built-in version, you can declare `plugin` in `.tflint.hcl` as follows and install it with `tflint --init`:
 
 ```hcl
-plugin "template" {
-  enabled = true
-
-  version = "0.1.0"
-  source  = "github.com/terraform-linters/tflint-ruleset-template"
-
-  signing_key = <<-KEY
-  -----BEGIN PGP PUBLIC KEY BLOCK-----
-  mQINBGCqS2YBEADJ7gHktSV5NgUe08hD/uWWPwY07d5WZ1+F9I9SoiK/mtcNGz4P
-  JLrYAIUTMBvrxk3I+kuwhp7MCk7CD/tRVkPRIklONgtKsp8jCke7FB3PuFlP/ptL
-  SlbaXx53FCZSOzCJo9puZajVWydoGfnZi5apddd11Zw1FuJma3YElHZ1A1D2YvrF
-  ...
-  KEY
+plugin "terraform" {
+    enabled = true
+    version = "0.1.0"
+    source  = "github.com/terraform-linters/tflint-ruleset-terraform"
 }
 ```
 
 ## Rules
 
-|Name|Description|Severity|Enabled|Link|
-| --- | --- | --- | --- | --- |
-|aws_instance_example_type|Example rule for accessing and evaluating top-level attributes|ERROR|✔||
-|aws_s3_bucket_example_lifecycle_rule|Example rule for accessing top-level/nested blocks and attributes under the blocks|ERROR|✔||
-|google_compute_ssl_policy|Example rule with a custom rule config|WARNING|✔||
-|terraform_backend_type|Example rule for accessing other than resources|ERROR|✔||
+See [Rules](docs/rules/README.md).
 
 ## Building the plugin
 
@@ -51,3 +49,11 @@ You can easily install the built plugin with the following:
 ```
 $ make install
 ```
+
+Note that if you install the plugin with `make install`, you must omit the `version` and `source` attributes in` .tflint.hcl`:
+
+```hcl
+plugin "terraform" {
+    enabled = true
+}
+```
@@ -0,0 +1,24 @@
+# Rules
+
+Terraform language rules implement recommendations from the [Terraform language documentation](https://www.terraform.io/language). If you want to enforce additional usage and style conventions in your configuration, you can author your own ruleset plugin.
+
+Below is a list of available rules.
+
+|Rule|Description|Enabled|
+| --- | --- | --- |
+|[terraform_comment_syntax](terraform_comment_syntax.md)|Disallow `//` comments in favor of `#`||
+|[terraform_deprecated_index](terraform_deprecated_index.md)|Disallow legacy dot index syntax||
+|[terraform_deprecated_interpolation](terraform_deprecated_interpolation.md)|Disallow deprecated (0.11-style) interpolation|✔|
+|[terraform_documented_outputs](terraform_documented_outputs.md)|Disallow `output` declarations without description||
+|[terraform_documented_variables](terraform_documented_variables.md)|Disallow `variable` declarations without description||
+|[terraform_empty_list_equality](terraform_empty_list_equality.md)|Disallow comparisons with `[]` when checking if a collection is empty||
+|[terraform_module_pinned_source](terraform_module_pinned_source.md)|Disallow specifying a git or mercurial repository as a module source without pinning to a version|✔|
+|[terraform_module_version](terraform_module_version.md)|Checks that Terraform modules sourced from a registry specify a version|✔|
+|[terraform_naming_convention](terraform_naming_convention.md)|Enforces naming conventions for resources, data sources, etc||
+|[terraform_required_providers](terraform_required_providers.md)|Require that all providers have version constraints through required_providers||
+|[terraform_required_version](terraform_required_version.md)|Disallow `terraform` declarations without require_version||
+|[terraform_standard_module_structure](terraform_standard_module_structure.md)|Ensure that a module complies with the Terraform Standard Module Structure||
+|[terraform_typed_variables](terraform_typed_variables.md)|Disallow `variable` declarations without type||
+|[terraform_unused_declarations](terraform_unused_declarations.md)|Disallow variables, data sources, and locals that are declared but never used||
+|[terraform_unused_required_providers](terraform_unused_required_providers.md)|Check that all `required_providers` are used in the module||
+|[terraform_workspace_remote](terraform_workspace_remote.md)|`terraform.workspace` should not be used with a "remote" backend with remote execution|✔|
@@ -0,0 +1,32 @@
+# terraform_comment_syntax
+
+Disallow `//` comments in favor of `#`.
+
+## Example
+
+```hcl
+# Good
+// Bad
+```
+
+```
+$ tflint
+1 issue(s) found:
+
+Warning: Single line comments should begin with # (terraform_comment_syntax)
+
+  on main.tf line 2:
+   2: // Bad
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_comment_syntax.md
+```
+
+## Why
+
+The Terraform language supports two different syntaxes for single-line comments: `#` and `//`. However, `#` is the default comment style and should be used in most cases.
+
+* [Configuration Syntax: Comments](https://www.terraform.io/docs/configuration/syntax.html#comments)
+
+## How To Fix
+
+Replace the leading double-slash (`//`) in your comment with the number sign (`#`).
@@ -0,0 +1,32 @@
+# terraform_deprecated_index
+
+Disallow legacy dot index syntax.
+
+## Example
+
+```hcl
+locals {
+  list  = ["a", "b", "c"]
+  value = list.0 
+}
+```
+
+```
+$ tflint
+1 issue(s) found:
+
+Warning: List items should be accessed using square brackets (terraform_deprecated_index)
+
+  on example.tf line 3:
+   3:   value = list.0
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_deprecated_index.md
+```
+
+## Why
+
+Terraform v0.12 supports traditional square brackets for accessing list items by index. However, for backward compatability with v0.11, Terraform continues to support accessing list items with the dot syntax normally used for attributes. While Terraform does not print warnings for this syntax, it is no longer documented and its use is discouraged.
+
+## How To Fix
+
+Switch to the square bracket syntax when accessing items in list, including resources that use `count`.
@@ -0,0 +1,38 @@
+# terraform_deprecated_interpolation
+
+Disallow deprecated (0.11-style) interpolation
+
+## Example
+
+```hcl
+resource "aws_instance" "deprecated" {
+    instance_type = "${var.type}"
+}
+
+resource "aws_instance" "new" {
+    instance_type = var.type
+}
+```
+
+```
+$ tflint
+1 issue(s) found:
+
+Warning: Interpolation-only expressions are deprecated in Terraform v0.12.14 (terraform_deprecated_interpolation)
+
+  on example.tf line 2:
+   2:     instance_type = "${var.type}"
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_deprecated_interpolation.md
+
+```
+
+## Why
+
+Terraform v0.12 introduces a new interpolation syntax, but continues to support the old 0.11-style interpolation syntax for compatibility.
+
+Terraform will currently print diagnostic warnings when deprecated interpolations are used. Consistent with its deprecation policy, they will raise errors in the next major release (v0.13). TFLint emits an issue instead of a warning with the same logic.
+
+## How To Fix
+
+Switch to the new interpolation syntax. See the release notes for Terraform 0.12.14 for details: https://github.com/hashicorp/terraform/releases/tag/v0.12.14
@@ -0,0 +1,49 @@
+# terraform_documented_outputs
+
+Disallow `output` declarations without description.
+
+## Example
+
+```hcl
+output "no_description" {
+  value = "value"
+}
+
+output "empty_description" {
+  value = "value"
+  description = ""
+}
+
+output "description" {
+  value = "value"
+  description = "This is description"
+}
+```
+
+```
+$ tflint
+2 issue(s) found:
+
+Notice: `no_description` output has no description (terraform_documented_outputs)
+
+  on template.tf line 1:
+   1: output "no_description" {
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_documented_outputs.md
+
+Notice: `empty_description` output has no description (terraform_documented_outputs)
+
+  on template.tf line 5:
+   5: output "empty_description" {
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_documented_outputs.md
+ 
+```
+
+## Why
+
+Since `description` is optional value, it is not always necessary to write it. But this rule is useful if you want to force the writing of description. Especially it is useful when combined with [terraform-docs](https://github.com/segmentio/terraform-docs).
+
+## How To Fix
+
+Write a description other than an empty string.
@@ -0,0 +1,49 @@
+# terraform_documented_variables
+
+Disallow `variable` declarations without description.
+
+## Example
+
+```hcl
+variable "no_description" {
+  default = "value"
+}
+
+variable "empty_description" {
+  default = "value"
+  description = ""
+}
+
+variable "description" {
+  default = "value"
+  description = "This is description"
+}
+```
+
+```
+$ tflint
+2 issue(s) found:
+
+Notice: `no_description` variable has no description (terraform_documented_variables)
+
+  on template.tf line 1:
+   1: variable "no_description" {
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_documented_variables.md
+
+Notice: `empty_description` variable has no description (terraform_documented_variables)
+
+  on template.tf line 5:
+   5: variable "empty_description" {
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_documented_variables.md
+
+```
+
+## Why
+
+Since `description` is optional value, it is not always necessary to write it. But this rule is useful if you want to force the writing of description. Especially it is useful when combined with [terraform-docs](https://github.com/segmentio/terraform-docs).
+
+## How To Fix
+
+Write a description other than an empty string.
@@ -0,0 +1,36 @@
+# terraform_empty_list_equality
+
+Disallow comparisons with `[]` when checking if a collection is empty.
+
+## Example
+
+```hcl
+variable "my_list" {
+	type = list(string)
+}
+resource "aws_db_instance" "mysql" {
+	count = var.my_list == [] ? 0 : 1
+    instance_class = "m4.2xlarge"
+}
+```
+
+```
+$ tflint
+1 issue(s) found:
+
+Warning: Comparing a collection with an empty list is invalid. To detect an empty collection, check its length. (terraform_empty_list_equality)
+
+  on test.tf line 5:
+   5:   count = var.my_list == [] ? 0 : 1
+
+Reference: https://github.com/terraform-linters/tflint-ruleset-terraform/blob/v0.1.0/docs/rules/terraform_empty_list_equality.md
+ 
+```
+
+## Why
+
+The `==` operator can only return true when the two operands have identical types, and the type of `[]` alone (without any further type conversions) is an empty tuple rather than a list of objects, strings, numbers or any other type. Therefore, a comparison with a single `[]` with the goal of checking if a collection is empty, will always return false.
+
+## How To Fix
+
+Check if a collection is empty by checking its length instead. For example: `length(var.my_list) == 0`.