Skip to content

Instantly share code, notes, and snippets.

View obrientimothya's full-sized avatar

Timothy O'Brien obrientimothya

  • CodeBigger
  • Australia
View GitHub Profile
@obrientimothya
obrientimothya / goss_files.yaml
Created August 29, 2021 13:56
secure-docker-image
file:
# T01 terraform binary must be valid
/usr/local/bin/terraform:
exists: true
mode: "0755"
owner: root
group: root
filetype: file
sha256: 278a0f66c7404ceb426e6f2db7f0f3a1b5b3d8373e7024640e7bc238389bab74
# T02 tfsec binary must be valid
@obrientimothya
obrientimothya / GHA01-pull-request.yaml
Created August 29, 2021 14:01
secure-docker-image
# GHA01 runs on pull request to the main branch
name: GHA01-pull-request
on:
pull_request:
branches:
- main
# env defines global variables for versioning and configuration
env:
IMAGE_NAME: secureimage
@obrientimothya
obrientimothya / GHA02-push-main.yaml
Created August 29, 2021 14:16
secure-docker-image
# GHA02 runs on push to the main branch
name: GHA02-push-main
on:
push:
branches:
- main
# env defines global variables for versioning and configuration
env:
IMAGE_NAME: secureimage