github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/github/actions/no_plain_text_action_secrets.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/github/actions/no_plain_text_action_secrets.tf.go (about)

     1  package actions
     2  
     3  var terraformNoPlainTextActionSecretsGoodExamples = []string{
     4  	`
     5  resource "github_actions_environment_secret" "good_example" {
     6  	repository       = "my repository name"
     7  	environment       = "my environment"
     8  	secret_name       = "my secret name"
     9  	encrypted_value   = var.some_encrypted_secret_string
    10  }
    11  `,
    12  }
    13  
    14  var terraformNoPlainTextActionSecretsBadExamples = []string{
    15  	`
    16  resource "github_actions_environment_secret" "bad_example" {	 
    17  	repository       = "my repository name"
    18  	environment       = "my environment"
    19  	secret_name       = "my secret name"
    20  	plaintext_value   = "sensitive secret string"
    21  }
    22  `,
    23  }
    24  
    25  var terraformNoPlainTextActionSecretsLinks = []string{
    26  	`https://registry.terraform.io/providers/integrations/github/latest/docs/resources/actions_environment_secret`, `https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions`,
    27  }
    28  
    29  var terraformNoPlainTextActionSecretsRemediationMarkdown = ``