darkwizard242.terrascan

Panoramica Versioni Approfondimenti

build-test release Ansible Role Maintainability Rating Reliability Rating Security Rating GitHub tag (latest SemVer) GitHub repo size

Ansible Role: terrascan

This role installs terrascan on Debian/Ubuntu and EL systems by default. Terrascan checks for compliance and security issues in Infrastructure as Code, helping reduce risks before setting up cloud infrastructure.

Requirements

No requirements.

Role Variables

You can find available variables in defaults/main.yml:

List of Variables:

terrascan_app: terrascan
terrascan_version: 1.19.1
terrascan_os: "{{ ansible_system }}"
terrascan_architecture_map:
  amd64: x86_64
  arm: arm64
  x86_64: x86_64
  armv6l: armv6
  armv7l: armv7
  aarch64: arm64
  32-bit: "i386"
  64-bit: x86_64
terrascan_dl_url: https://github.com/tenable/{{ terrascan_app }}/releases/download/v{{ terrascan_version }}/{{ terrascan_app }}_{{ terrascan_version }}_{{ terrascan_os }}_{{ terrascan_architecture_map[ansible_architecture] }}.tar.gz
terrascan_bin_path: /usr/local/bin
terrascan_file_owner: root
terrascan_file_group: root
terrascan_file_permission_mode: '0755'

Variable Descriptions:

Variable Description
terrascan_app The app to install, which is terrascan
terrascan_version The version of terrascan to install, defaults to: 1.19.1
terrascan_os The type of operating system.
terrascan_architecture_map The architecture of the operating system.
terrascan_dl_url URL from which to download the terrascan binary.
terrascan_bin_path Path where the terrascan binary will be stored, defaults to: /usr/local/bin
terrascan_file_owner Owner of the terrascan binary file.
terrascan_file_group Group for the terrascan binary file.
terrascan_file_permission_mode Permission settings for the file, defaults to: 0755

Dependencies

No dependencies

Example Playbook

To use the role (install terrascan) in Ansible playbooks by default:

- hosts: servers
  roles:
    - darkwizard242.terrascan

To customize the role behavior (e.g., specify the desired terrascan version):

- hosts: servers
  roles:
    - darkwizard242.terrascan
  vars:
    terrascan_version: 1.15.0

To customize the role behavior (e.g., place the terrascan binary in a different location):

- hosts: servers
  roles:
    - darkwizard242.terrascan
  vars:
    terrascan_bin_path: /bin/

License

MIT

Author Information

This role was created by Ali Muhammad.

Informazioni sul progetto

Installs/Uninstalls 'terrascan'. Terrascan Detect compliance and security violations across IaC.

role terrascan terraform aws kubernetes docker helm kustomize security system os
Installa
ansible-galaxy install darkwizard242.terrascan
GitHub repository
2 stelle
0 fork
0 problemi aperti
Licenza
mit
Download
2k
Proprietario
Ali Muhammad
Senior DevOps/CloudOps Engineer. Dedicated to Automating everything I come across. Love to work on and learn new technologies/tools everyday!