CODE EDITOR
on
:
push
:
branches
:
- mai
n
paths-ignore
:
- 'vault/**
'
- 'infrastructure/**
'
pull_request
:
jobs
:
steps
:
- name: Import Secret
s
uses: hashicorp/
[email protected].
0
- name: Setup Terrafor
m
uses: hashicorp/setup-terraform@v
1
- name: Terraform Pla
n
id: pla
n
if: github.event_name == ‘pull_request
'
- name: Terraform Plan Statu
s
if: steps.plan.outcome == 'failure
'
run: exit
1
- name: Terraform Appl
y
if: github.ref == 'refs/heads/main' && github.event_name == ‘push
'
run: terraform apply -auto-approve -var-file=prod.tfvars
How do you know that these GitHub
Actions are secure?
😱