chore(deps): update terraform github to v5.36.0 #2692
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Terraform (PR) | |
on: | |
# terraform が file(...) でファイルを参照することがあり、 | |
# 参照されたファイルが変更された場合 re-apply する必要があるので、 | |
# 常に plan していい | |
pull_request: | |
jobs: | |
tf_plan: | |
name: tf plan | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: hashicorp/setup-terraform@v2 | |
with: | |
cli_config_credentials_token: ${{ secrets.TERRAFORM_CLOUD_API_TOKEN }} | |
terraform_version: 1.2.1 | |
- name: Terraform fmt | |
run: terraform fmt -check | |
working-directory: "./terraform" | |
- run: terraform init | |
working-directory: "./terraform" | |
- name: Validate .tf files | |
run: terraform validate -no-color | |
working-directory: "./terraform" | |
- name: Open tunnel to OnP k8s cluster | |
run: bash "./.github/workflows/scripts/open-tunnel-to-onp-k8s-and-export-tf-var-to-github-env.sh" | |
- name: Expose all Terraform variables to environment variables from secrets | |
run: bash "./.github/workflows/scripts/expose-all-tf-vars-to-github-env.sh" | |
env: | |
SECRETS_CONTEXT: ${{ toJson(secrets) }} | |
- name: Plan Terraform infrastructure changes | |
run: terraform plan -input=false -no-color -lock-timeout=10m | |
id: tfplan | |
working-directory: "./terraform" | |
- name: Comment result to Pull Request | |
uses: robburger/terraform-pr-commenter@v1 | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
with: | |
commenter_type: plan | |
# Terraform rarely writes to stdout and stderr in the same action, so we concatenate | |
commenter_input: ${{ format('{0}{1}', steps.tfplan.outputs.stdout, steps.tfplan.outputs.stderr) }} | |
commenter_exitcode: ${{ steps.tfplan.outputs.exitcode }} |