This repository contains template files that can be used in Azure DevOps Pipelines. The purpose of this repo is to standardise the way that steps are done for common tasks, avoiding code duplication and potential mistakes. Each template comes with its own README which contains instructions on how to use it.
Below is a summary of the templates we have available
| Name | Description |
|---|---|
| Checkov | Terraform scanning to ensure that there is no security misconfiguration in your terraform files |
| Github Tag | Github tags to your commits for marking significant points in a project's development |
| Retain pipeline run | Retaining a pipeline run for longer than the default configured 30 days after production release |
| SAST | SAST scan of the dotnet projects |
| Trivy | Static analysis security scanner against your Terraform |
| Gated Infrastructure Deploy | Will trigger manual validation step if Terraform plan detects resource destruction |