scalr_checkov_integration

Resource: scalr_checkov_integration

Manages the state of Checkov integrations in Scalr.

Example Usage

resource "scalr_checkov_integration" "example1" {
  name         = "my-checkov-integration-1"
  environments = ["*"]
  cli_args     = "--quiet"
}

resource "scalr_checkov_integration" "example2" {
  name = "my-checkov-integration-2"
  vcs_repo {
    identifier = "org/repo"
    branch     = "main"
  }
}

resource "scalr_checkov_integration" "example3" {
  name         = "my-checkov-integration-3"
  environments = []
  cli_args     = "--compact"
}

Schema

Required

• name (String) Name of the Checkov integration.

Optional

• cli_args (String) CLI parameters to be passed to checkov command.
• environments (Set of String) List of environments this integration is linked to. Use ["*"] to allow in all environments.
• external_checks_enabled (Boolean) Indicates whether external checks should be enabled. Default false.
• vcs_provider_id (String) ID of VCS provider in the format vcs-<RANDOM STRING>. Required if external_checks_enabled is true.
• vcs_repo (Block List) Settings for the Checkov integration's VCS repository. Required if external_checks_enabled is true. (see below for nested schema)
• version (String) Version of the Checkov integration to use.

Read-Only

• id (String) The ID of this resource.

Nested Schema for vcs_repo

Required:

• identifier (String) A reference to your VCS repository. For GitHub, GitHub Enterprise and GitLab the format is <org>/<repo>. For Azure DevOps Services the format is <org>/<project>/<repo>.

Optional:

• branch (String) Branch of a repository the Checkov custom checks are associated with.
• path (String) The sub-directory of the VCS repository where Checkov checks are stored. If omitted or specified as an empty string, this defaults to the repository's root.

Import

Import is supported using the following syntax:

terraform import scalr_checkov_integration.example in-xxxxxxxxxx