Using tfsec and Jenkins to Secure Your Terraform Code

preview_player
Показать описание
Need help with your Jenkins questions?

Timecodes ⏱:

00:00 Introduction
00:10 Overview
00:29 Starting point
01:01 Review tfsec documentation
01:33 Review sample repository
03:24 Create job
06:04 Run job again
07:01 Why use a static analysis scanner for your Terraform code?

#jenkinstutorial #tfsec #terraform

Information referenced in this video:

Sample repository:

Jenkins LTS 2.289.3

CloudBees on Twitter:

Darin on Twitter:
  1. CloudBeesTV
  2. darin pope
  3. jenkins
  4. jenkins tutorial
  5. terraform
  6. tfswitch
Рекомендации по теме
Using tfsec and 0:08:24

Using tfsec and Jenkins to Secure Your Terraform Code

How to integrate 0:10:56

How to integrate Jenkins with Tfsec

Using TFsec and 0:13:19

Using TFsec and Spacelift to Secure Terraform Code

Secure your Terraform 0:12:07

Secure your Terraform CI/CD Pipelines with tfsec

Using tfsec to 0:51:36

Using tfsec to scan Terraform Code || tfsec with GitHub Actions

Part2 - Ensuring 0:09:41

Part2 - Ensuring Terraform Code Standards and Security with flint and Tfsec in GitHub Actions

Introduction to the 0:11:09

Introduction to the tfsec extension for Visual Studio Code

Using tfsec to 0:30:06

Using tfsec to Scan Your Terraform Code

Using tfsec with 0:06:27

Using tfsec with GitHub Actions

Structura.IO - Introducing 0:01:01

Structura.IO - Introducing TFSec Integration

How to run 0:04:45

How to run security scan on Terraform Code with tfscan

Identifying Misconfigurations in 0:14:09

Identifying Misconfigurations in your Terraform

How to Read 0:14:25

How to Read a Properties File Using Jenkins

How to Run 0:08:15

How to Run a Terraform Script in Jenkins

Terraform automation with 0:27:37

Terraform automation with azure devops in english CICD tfsec, tflint, cost estimation #devops

Deploying Terraform Enterprise 0:21:38

Deploying Terraform Enterprise in a Highly Secure Environment at Morgan Stanley

Using Checkov with 0:25:07

Using Checkov with Terraform and Azure DevOps

How to Use 0:14:01

How to Use Aqua to Manage Tools for Jenkins Agents

Terraform Security Using 0:09:00

Terraform Security Using Checkov | Scan Terraform Templates

Terraform & Jenkins 0:53:23

Terraform & Jenkins Configuration in AWS

Setting up Terraform 0:42:16

Setting up Terraform guardrails with OPA and TFSEC

Day 24 - 0:10:03

Day 24 - Static analysis of Terraform code for Azure resources with Dushyant Priyadarshee

How to Integrate 0:08:52

How to Integrate Liquibase With Jenkins

Terraform automation with 0:24:32

Terraform automation with azure devops in hindi CICD tfsec, tflint, cost estimation #devopstutorial

Комментарии
Автор

How to show a report of this terraform script scan result on Jenkins, like we display report of build using Junit

mohammadraghib
Автор

Hello, thank you for the video!
I am using tfsec in Jenkins by pulling docker image but when I run the command (docker run --rm -v "$WORKSPACE/:/src" aquasec/tfsec:latest /src) it succeeds but says there are no problems found, meanwhile if I run the same command locally it finds problems!! Also the path of tf files is correct. Do you think of any possible solution? Thanks in advance.

vehbirestelica
Автор

Does that help passing sensitive variables on Terraform Apply? I never understood how you do that without vars file.

jampietri
welcome to shbcf.ru