This project aims to alert developers about Terraform plans that are out of sync. When having multiple projects with mutltiple workspaces it is hard to keep track of which workspaces where actually applied with which changes. It could even be so that developers forget to apply their changes in all workspaces.
Enter Nanny! Enabled in your build-cycle Terraform Nanny will read terraform-nanny.json which describes your projects folder-structure and which workspaces to build in each folder. In the attached example there are three separate terraform enabled folders. One has enabled workspaces and thus built once for each entry in workspaces, the other two are built once.
Terraform Nanny will only fail your build if terraform for some reason breaks, Nanny's only job is to alert developers about plans not applied.
Use the pushed docker image in your buildstep to check your current source folder. You need to pass your credentials to the container.
sudo: false
services:
- docker
script:
- docker run -e AWS_ACCESS_KEY_ID=<YOUR_KEY> -e AWS_SECRET_ACCESS_KEY=<YOUR_SECRET> -v `pwd`:/src digitalroute/terraform-nanny:latest