-
-
Notifications
You must be signed in to change notification settings - Fork 1
/
.pre-commit-hooks.yaml
113 lines (99 loc) · 2.97 KB
/
.pre-commit-hooks.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
- id: terraform-docs
name: Terraform docs
description: Inserts input and output documentation into README.md (using terraform-docs).
require_serial: true
entry: bin/terraform_docs.sh
language: script
files: (\.tf)$
exclude: \.terraform\/.*$
- id: terraform-docs-adoc
name: Terraform docs Asciidoctor
description: Inserts input and output documentation into README.adoc (using terraform-docs).
require_serial: true
entry: bin/terraform_docs_asciidoc.sh
language: script
exclude: \.terraform\/.*$
- id: terraform-validate
name: Terraform validate
description: Validates all Terraform configuration files.
entry: bin/terraform_validate.sh
language: script
files: (\.tf|\.tfvars)$
exclude: \.terraform\/.*$
- id: terraform-sec
name: Terraform validate with tfsec
description: Static analysis of Terraform templates to spot potential security issues.
entry: bin/terraform_tfsec.sh
language: script
- id: terraform-lint
name: Terraform validate with tflint
description: Validates all Terraform configuration files with TFLint.
entry: bin/terraform_tflint.sh
language: script
files: (\.tf|\.tfvars)$
exclude: \.terraform\/.*$
- id: terraform-fmt
name: Terraform fmt
description: Rewrites all Terraform configuration files to a canonical format.
entry: bin/terraform_fmt.sh
language: script
files: (\.tf|\.tfvars)$
exclude: \.terraform\/.*$
- id: checkov
name: Checkov
description: Runs checkov on Terraform templates.
entry: checkov -d .
language: python
pass_filenames: false
always_run: false
files: \.tf$
exclude: \.+.terraform\/.*$
require_serial: true
- id: helm-lint
name: helmlint
description: Run helm lint, a linter for helm charts
entry: bin/helmlint.sh
language: script
files: \.((ya?ml)|(tpl))$
- id: helm-unittest
name: Helm-unittest
description: This hook run helm unittest from quintush/helm-unittest
entry: bin/helm-unittest.sh
language: script
pass_filenames: false
always_run: true
- id: docker-lint
name: Lint Dockerfiles
description: Runs hadolint to lint Dockerfiles
language: script
entry: bin/docker-lint.sh
files: Dockerfil*
- id: shellcheck
name: Shellcheck Bash Linter
description: Performs linting on bash scripts
entry: bin/shellcheck.sh
language: script
- id: verify-json
name: Pretty Print JSON files
description: Checks JSON files and pretty prints them
entry: bin/verify-json.sh
language: script
files: \.json$
- id: verify-yaml
name: Pretty Print YAML files
description: Checks YAML files and pretty prints them
entry: bin/verify-yaml.sh
language: script
files: \.(ya?ml)$
- id: markdown-toc
name: Generate Markdown toc
description: Generate a Table of Contents in a Markdown Document
entry: bin/markdown-toc.sh
language: script
files: \.md$
- id: no-commit-on-branch
name: No commit on master or main
description: Do no allow any commit on either specified branch.
entry: bin/no-commit-on-branch.sh
language: script
always_run: true