terraform-docker-renovate

wbyc/terraform-docker-renovate

Fork 0

Commit Graph

Author	SHA1	Message	Date
Patrick de Ruiter	899fac55bb	feat: Replace pipeline with working configuration from EDA module Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 20s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 30s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / Terraform Validate (push) Failing after 31s Details Code Quality & Security Scan / SonarQube Scan (push) Has been skipped Details Code Quality & Security Scan / Terraform Plan (push) Has been skipped Details Code Quality & Security Scan / Terraform Apply (push) Has been skipped Details Added working pipeline based on terraform-docker-eda module: - Added pipeline.yaml with complete CI/CD workflow including Vault CLI setup - Added setup-ssh.sh for Docker provider SSH key authentication - Added .tflint.hcl for Terraform linting configuration - Removed old sonarqube.yaml pipeline file Pipeline now includes: - Vault CLI installation and SSH key setup via script - Proper backend configuration with -backend-config flags - All security scans: TFLint, Tfsec, Checkov - SonarQube integration - Terraform plan/apply with MinIO artifact storage - Terraform destroy workflow with manual approval This pipeline configuration has been proven to work with Vault, MinIO, and Docker providers using self-signed certificates.	2025-11-18 03:09:53 +01:00
Patrick de Ruiter	3a85a73a1b	fix: Add missing Terraform and DNS provider version constraints Some checks failed Code Quality & Security Scan / TFLint (push) Successful in 18s Details Code Quality & Security Scan / Terraform Destroy (push) Has been skipped Details Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s Details Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s Details Code Quality & Security Scan / SonarQube Trigger (push) Has been cancelled Details Code Quality & Security Scan / Terraform Validate (push) Has been cancelled Details Code Quality & Security Scan / Terraform Plan (push) Has been cancelled Details Code Quality & Security Scan / Terraform Apply (push) Has been cancelled Details - Added required_version constraint (>= 1.5.0) - Added DNS provider to required_providers with version ~> 3.4 - Updated provider versions to use pessimistic constraint operator (~>) - Fixes TFLint warnings for missing version constraints	2025-11-17 08:28:13 +01:00
Patrick de Ruiter	d417281ee0	feat: Repurpose module from Ansible EDA to Renovate bot deployment Complete rewrite of the module to deploy a Renovate bot for automated dependency management with Gitea integration. Breaking Changes: - Module purpose changed from Ansible EDA to Renovate bot - All variables restructured for Renovate configuration - State file path updated to home/docker/renovate/renovate.tfstate - Volumes changed from EDA rulebooks/logs to config/cache - Container image now uses renovate/renovate:latest Added: - Gitea platform integration with token authentication - Renovate configuration template (config.js.tpl) - Repository configuration examples - Gitea Actions workflow examples - SonarQube integration examples - Comprehensive documentation (README, QUICKSTART, MIGRATION_GUIDE) - CHANGELOG.md for version tracking - Security best practices Removed: - All Ansible EDA-specific configuration - Traefik labels (not needed for Renovate) - Old EDA documentation files - example-rulebook.yml Updated: - Complete README with Gitea setup instructions - terraform.tfvars with Renovate configuration - All resource names from ansible_eda to renovate - Backend state path This is version 2.0.0 - not backward compatible with previous EDA version. See MIGRATION_GUIDE.md for detailed migration instructions.	2025-11-17 00:32:51 +01:00

Author

SHA1

Message

Date

Patrick de Ruiter

899fac55bb

feat: Replace pipeline with working configuration from EDA module

Code Quality & Security Scan / TFLint (push) Successful in 20s

Details

Code Quality & Security Scan / Terraform Destroy (push) Has been skipped

Details

Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 30s

Details

Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s

Details

Code Quality & Security Scan / Terraform Validate (push) Failing after 31s

Details

Code Quality & Security Scan / SonarQube Scan (push) Has been skipped

Details

Code Quality & Security Scan / Terraform Plan (push) Has been skipped

Details

Code Quality & Security Scan / Terraform Apply (push) Has been skipped

Details

Added working pipeline based on terraform-docker-eda module:
- Added pipeline.yaml with complete CI/CD workflow including Vault CLI setup
- Added setup-ssh.sh for Docker provider SSH key authentication
- Added .tflint.hcl for Terraform linting configuration
- Removed old sonarqube.yaml pipeline file

Pipeline now includes:
- Vault CLI installation and SSH key setup via script
- Proper backend configuration with -backend-config flags
- All security scans: TFLint, Tfsec, Checkov
- SonarQube integration
- Terraform plan/apply with MinIO artifact storage
- Terraform destroy workflow with manual approval

This pipeline configuration has been proven to work with Vault, MinIO,
and Docker providers using self-signed certificates.

2025-11-18 03:09:53 +01:00

Patrick de Ruiter

3a85a73a1b

fix: Add missing Terraform and DNS provider version constraints

Code Quality & Security Scan / TFLint (push) Successful in 18s

Details

Code Quality & Security Scan / Terraform Destroy (push) Has been skipped

Details

Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 29s

Details

Code Quality & Security Scan / Checkov Security Scan (push) Successful in 37s

Details

Code Quality & Security Scan / SonarQube Trigger (push) Has been cancelled

Details

Code Quality & Security Scan / Terraform Validate (push) Has been cancelled

Details

Code Quality & Security Scan / Terraform Plan (push) Has been cancelled

Details

Code Quality & Security Scan / Terraform Apply (push) Has been cancelled

Details

- Added required_version constraint (>= 1.5.0)
- Added DNS provider to required_providers with version ~> 3.4
- Updated provider versions to use pessimistic constraint operator (~>)
- Fixes TFLint warnings for missing version constraints

2025-11-17 08:28:13 +01:00

Patrick de Ruiter

d417281ee0

feat: Repurpose module from Ansible EDA to Renovate bot deployment

Complete rewrite of the module to deploy a Renovate bot for automated
dependency management with Gitea integration.

Breaking Changes:
- Module purpose changed from Ansible EDA to Renovate bot
- All variables restructured for Renovate configuration
- State file path updated to home/docker/renovate/renovate.tfstate
- Volumes changed from EDA rulebooks/logs to config/cache
- Container image now uses renovate/renovate:latest

Added:
- Gitea platform integration with token authentication
- Renovate configuration template (config.js.tpl)
- Repository configuration examples
- Gitea Actions workflow examples
- SonarQube integration examples
- Comprehensive documentation (README, QUICKSTART, MIGRATION_GUIDE)
- CHANGELOG.md for version tracking
- Security best practices

Removed:
- All Ansible EDA-specific configuration
- Traefik labels (not needed for Renovate)
- Old EDA documentation files
- example-rulebook.yml

Updated:
- Complete README with Gitea setup instructions
- terraform.tfvars with Renovate configuration
- All resource names from ansible_eda to renovate
- Backend state path

This is version 2.0.0 - not backward compatible with previous EDA version.
See MIGRATION_GUIDE.md for detailed migration instructions.

2025-11-17 00:32:51 +01:00

3 Commits