diff --git a/.github/workflows/tfsec.yml b/.github/workflows/tfsec.yml index fb94fd8..9822a67 100644 --- a/.github/workflows/tfsec.yml +++ b/.github/workflows/tfsec.yml @@ -8,4 +8,4 @@ jobs: uses: clouddrove/github-shared-workflows/.github/workflows/tfsec.yml@1.2.1 secrets: inherit with: - working_directory: ./ \ No newline at end of file + working_directory: '_example/basic/' \ No newline at end of file diff --git a/_example/basic/example.tf b/_example/basic/example.tf index 98c75b8..9c3d178 100644 --- a/_example/basic/example.tf +++ b/_example/basic/example.tf @@ -26,7 +26,7 @@ module "storage" { account_replication_type = "GRS" ## Encryption is not enabled for this Storage account - cmk_encryption_enabled = false + cmk_encryption_enabled = false ## Storage Container containers_list = [ diff --git a/main.tf b/main.tf index 099d5e2..2f34225 100644 --- a/main.tf +++ b/main.tf @@ -18,7 +18,7 @@ module "labels" { ## To create storage account with cmk(customer managed key) encryption set 'var.default_enabled = false'. ##----------------------------------------------------------------------------- resource "azurerm_storage_account" "storage" { - count = var.enabled ? 1 : 0 + count = var.enabled ? 1 : 0 # depends_on = [azurerm_role_assignment.identity_assigned] name = var.storage_account_name resource_group_name = var.resource_group_name @@ -574,7 +574,7 @@ resource "azurerm_private_dns_a_record" "arecord1" { resource "azurerm_monitor_diagnostic_setting" "storage" { count = var.enabled && var.enable_diagnostic ? 1 : 0 name = format("storage-diagnostic-log") - target_resource_id = join("", azurerm_storage_account.storage.*.id) + target_resource_id = join("", azurerm_storage_account.storage.*.id) storage_account_id = var.storage_account_id eventhub_name = var.eventhub_name eventhub_authorization_rule_id = var.eventhub_authorization_rule_id