OtherGitLab ComponentsInfrastructure as Code

Infrastructure as Code

The Infrastructure as Code (iac) component focuses on analyzing your infrastructure code for security vulnerabilities. This component helps in identifying misconfigurations and security risks in your infrastructure setup, ensuring that your cloud resources are configured securely before deployment.

The iac accept a following inputs:

NameDescriptionRequiredDefault Value
api_urlThe DevGuard API URLNohttps://api.main.devguard.org
asset_nameName of the asset to scanYes
tokenAPI token for authenticating with DevGuardYes
scan_stageThe stage where the scan is runNotest
runner_tagsThe runner tags used to select appropriate CI runners.No""

Usage Example: Here’s an example of how to call this component:

include:
- remote: "https://gitlab.com/l3montree/devguard/-/raw/main/templates/infrastructure-as-code-scanning.yml"
  inputs:
    asset_name: "myOrgnaization/projects/myProject/assets/myAsset"
    token: "$DEVGUARD_TOKEN"