{"id":15878813,"url":"https://github.com/darkwizard242/ansible-role-tfsec","last_synced_at":"2025-10-06T20:10:55.384Z","repository":{"id":37959007,"uuid":"262662998","full_name":"darkwizard242/ansible-role-tfsec","owner":"darkwizard242","description":"Ansible role for tfsec. Available on Ansible Galaxy.","archived":false,"fork":false,"pushed_at":"2025-01-14T04:35:34.000Z","size":117,"stargazers_count":4,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-04-01T18:50:33.385Z","etag":null,"topics":["ansible","ansible-galaxy","ansible-role","security-scanner","static-analysis","terraform","terraform-code","tfsec"],"latest_commit_sha":null,"homepage":"https://galaxy.ansible.com/darkwizard242/tfsec","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/darkwizard242.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-05-09T21:35:06.000Z","updated_at":"2025-01-14T04:35:21.000Z","dependencies_parsed_at":"2024-01-17T22:33:39.027Z","dependency_job_id":"66f4516f-9ce6-42d6-b5f7-48d0f73e6360","html_url":"https://github.com/darkwizard242/ansible-role-tfsec","commit_stats":null,"previous_names":[],"tags_count":94,"template":false,"template_full_name":null,"purl":"pkg:github/darkwizard242/ansible-role-tfsec","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-tfsec","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-tfsec/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-tfsec/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-tfsec/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/darkwizard242","download_url":"https://codeload.github.com/darkwizard242/ansible-role-tfsec/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/darkwizard242%2Fansible-role-tfsec/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":278671770,"owners_count":26025751,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-06T02:00:05.630Z","response_time":65,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","ansible-galaxy","ansible-role","security-scanner","static-analysis","terraform","terraform-code","tfsec"],"created_at":"2024-10-06T02:41:57.957Z","updated_at":"2025-10-06T20:10:55.379Z","avatar_url":"https://github.com/darkwizard242.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![build-test](https://github.com/darkwizard242/ansible-role-tfsec/workflows/build-and-test/badge.svg?branch=master)](https://github.com/darkwizard242/ansible-role-tfsec/actions?query=workflow%3Abuild-and-test) [![release](https://github.com/darkwizard242/ansible-role-tfsec/workflows/release/badge.svg)](https://github.com/darkwizard242/ansible-role-tfsec/actions?query=workflow%3Arelease) ![Ansible Role](https://img.shields.io/ansible/role/d/darkwizard242/tfsec) [![Maintainability Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-tfsec\u0026metric=sqale_rating)](https://sonarcloud.io/dashboard?id=ansible-role-tfsec) [![Reliability Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-tfsec\u0026metric=reliability_rating)](https://sonarcloud.io/dashboard?id=ansible-role-tfsec) [![Security Rating](https://sonarcloud.io/api/project_badges/measure?project=ansible-role-tfsec\u0026metric=security_rating)](https://sonarcloud.io/dashboard?id=ansible-role-tfsec) ![GitHub tag (latest SemVer)](https://img.shields.io/github/tag/darkwizard242/ansible-role-tfsec?label=release) ![GitHub repo size](https://img.shields.io/github/repo-size/darkwizard242/ansible-role-tfsec?color=orange\u0026style=flat-square)\n\n# Ansible Role: tfsec\n\nRole to install (_by default_) `tfsec` on **Debian/Ubuntu** and **EL** systems. [tfsec](https://github.com/aquasecurity/tfsec) is a static analysis (security based) for scanning terraform code. originally developed by [Liam Galvin](https://github.com/liamg).\n\n## Requirements\n\nNone.\n\n## Role Variables\n\nAvailable variables are listed below (located in `defaults/main.yml`):\n\n### Variables list:\n\n```yaml\ntfsec_app: tfsec\ntfsec_version: 1.28.14\ntfsec_os: \"{{ ansible_system | lower }}\"\ntfsec_architecture_map:\n amd64: amd64\n arm: arm64\n x86_64: amd64\n armv6l: armv6\n armv7l: armv7\n aarch64: arm64\n 32-bit: \"386\"\n 64-bit: amd64\ntfsec_dl_url: https://github.com/aquasecurity/{{ tfsec_app }}/releases/download/v{{ tfsec_version }}/{{ tfsec_app }}-{{ tfsec_os }}-{{ tfsec_architecture_map[ansible_architecture] }}\ntfsec_bin_path: \"/usr/local/bin/{{ tfsec_app }}\"\ntfsec_file_owner: root\ntfsec_file_group: root\ntfsec_file_mode: '0755'\n```\n\n### Variables table:\n\nVariable | Description\n------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------\ntfsec_app | Defines the app to install i.e. **tfsec**\ntfsec_version | Defined to dynamically fetch the desired version to install. Defaults to: **1.28.14**\ntfsec_os | Defines os type. Used for obtaining the correct type of binaries based on OS type.\ntfsec_architecture_map | Defines os architecture. Used to set the correct type of binaries based on OS System Architecture.\ntfsec_dl_url | Defines URL to download the tfsec binary from.\ntfsec_bin_path | Defined to dynamically set the appropriate path to store tfsec binary into. Defaults to (as generally available on any user's PATH): **/usr/local/bin/tfsec**\ntfsec_bin_permission_mode | Defines the permission mode level for the file.\ntfsec_file_owner | Owner for the binary file of tfsec.\ntfsec_file_group | Group for the binary file of tfsec.\ntfsec_file_mode | Mode for the binary file of tfsec.\n\n## Dependencies\n\nNone\n\n## Example Playbook\n\nFor default behaviour of role (i.e. installation of **tfsec**) in ansible playbooks.\n\n```yaml\n- hosts: servers\n roles:\n - darkwizard242.tfsec\n```\n\nFor customizing behavior of role (i.e. specifying the desired **tfsec** version) in ansible playbooks.\n\n```yaml\n- hosts: servers\n roles:\n - darkwizard242.tfsec\n vars:\n tfsec_version: 0.18.0\n```\n\nFor customizing behavior of role (i.e. placing binary of **tfsec** package in different location) in ansible playbooks.\n\n```yaml\n- hosts: servers\n roles:\n - darkwizard242.tfsec\n vars:\n tfsec_bin_path: /bin/\n```\n\n## License\n\n[MIT](https://github.com/darkwizard242/ansible-role-tfsec/blob/master/LICENSE)\n\n## Author Information\n\nThis role was created by [Ali Muhammad](https://www.alimuhammad.dev/).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdarkwizard242%2Fansible-role-tfsec","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdarkwizard242%2Fansible-role-tfsec","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdarkwizard242%2Fansible-role-tfsec/lists"}