Initial changes #8158

SteveLinden · 2024-10-03T16:01:41Z

Changes made to just the cdpt part of the code as it was not working and was incorrect. This was corrected (no "_integrations" in the pagerduty_event_orchestration_integration code.

This was amended and the plan ran successfully. I will push this and ensure that the plan/apply is successful.

Next changes will be in another PR.

github-actions · 2024-10-03T16:03:47Z

`Trivy Scan` Failed

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-03T16:03:41Z INFO [vulndb] Need to update DB
2024-10-03T16:03:41Z INFO [vulndb] Downloading vulnerability DB...
2024-10-03T16:03:41Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:03:41Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9cb2f210abdc0e7f6d8796b893abfa4e08921055d1713af006c4f2d732564490: TOOMANYREQUESTS: retry-after: 249.773µs, allowed: 44000/minute"
2024-10-03T16:03:41Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Failed

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-03T16:03:41Z	INFO	[vulndb] Need to update DB
2024-10-03T16:03:41Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-03T16:03:41Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:03:41Z	ERROR	[vulndb] Failed to download artifact	repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9cb2f210abdc0e7f6d8796b893abfa4e08921055d1713af006c4f2d732564490: TOOMANYREQUESTS: retry-after: 249.773µs, allowed: 44000/minute"
2024-10-03T16:03:41Z	FATAL	Fatal error	init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

github-actions · 2024-10-03T16:04:29Z

`Trivy Scan` Failed

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-03T16:04:24Z INFO [vulndb] Need to update DB
2024-10-03T16:04:24Z INFO [vulndb] Downloading vulnerability DB...
2024-10-03T16:04:24Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:04:24Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9cb2f210abdc0e7f6d8796b893abfa4e08921055d1713af006c4f2d732564490: TOOMANYREQUESTS: retry-after: 422.298µs, allowed: 44000/minute"
2024-10-03T16:04:24Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Failed

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-03T16:04:24Z	INFO	[vulndb] Need to update DB
2024-10-03T16:04:24Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-03T16:04:24Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:04:24Z	ERROR	[vulndb] Failed to download artifact	repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9cb2f210abdc0e7f6d8796b893abfa4e08921055d1713af006c4f2d732564490: TOOMANYREQUESTS: retry-after: 422.298µs, allowed: 44000/minute"
2024-10-03T16:04:24Z	FATAL	Fatal error	init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

github-actions · 2024-10-03T16:15:29Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-03T16:15:20Z INFO [vulndb] Need to update DB
2024-10-03T16:15:20Z INFO [vulndb] Downloading vulnerability DB...
2024-10-03T16:15:20Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:15:22Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:15:22Z INFO [vuln] Vulnerability scanning is enabled
2024-10-03T16:15:22Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-03T16:15:22Z INFO [misconfig] Need to update the built-in checks
2024-10-03T16:15:22Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-03T16:15:22Z INFO [secret] Secret scanning is enabled
2024-10-03T16:15:22Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-03T16:15:22Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-03T16:15:23Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-03T16:15:23Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-03T16:15:23Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-03T16:15:23Z INFO Number of language-specific files num=0
2024-10-03T16:15:23Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-03T16:15:20Z	INFO	[vulndb] Need to update DB
2024-10-03T16:15:20Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-03T16:15:20Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:15:22Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-03T16:15:22Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-03T16:15:22Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-03T16:15:22Z	INFO	[misconfig] Need to update the built-in checks
2024-10-03T16:15:22Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-03T16:15:22Z	INFO	[secret] Secret scanning is enabled
2024-10-03T16:15:22Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-03T16:15:22Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-03T16:15:23Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-03T16:15:23Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-03T16:15:23Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-03T16:15:23Z	INFO	Number of language-specific files	num=0
2024-10-03T16:15:23Z	INFO	Detected config files	num=1
trivy_exitcode=0

github-actions · 2024-10-07T11:04:00Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T11:03:52Z INFO [vulndb] Need to update DB
2024-10-07T11:03:52Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T11:03:52Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:03:54Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:03:54Z INFO [vuln] Vulnerability scanning is enabled
2024-10-07T11:03:54Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-07T11:03:54Z INFO [misconfig] Need to update the built-in checks
2024-10-07T11:03:54Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T11:03:54Z INFO [secret] Secret scanning is enabled
2024-10-07T11:03:54Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T11:03:54Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T11:03:55Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-07T11:03:55Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T11:03:55Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T11:03:55Z INFO Number of language-specific files num=0
2024-10-07T11:03:55Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T11:03:52Z	INFO	[vulndb] Need to update DB
2024-10-07T11:03:52Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T11:03:52Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:03:54Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:03:54Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-07T11:03:54Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-07T11:03:54Z	INFO	[misconfig] Need to update the built-in checks
2024-10-07T11:03:54Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T11:03:54Z	INFO	[secret] Secret scanning is enabled
2024-10-07T11:03:54Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T11:03:54Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T11:03:55Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-07T11:03:55Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T11:03:55Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T11:03:55Z	INFO	Number of language-specific files	num=0
2024-10-07T11:03:55Z	INFO	Detected config files	num=1
trivy_exitcode=0

github-actions · 2024-10-07T11:09:55Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T11:09:47Z INFO [vulndb] Need to update DB
2024-10-07T11:09:47Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T11:09:47Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:09:48Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:09:48Z INFO [vuln] Vulnerability scanning is enabled
2024-10-07T11:09:48Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-07T11:09:48Z INFO [misconfig] Need to update the built-in checks
2024-10-07T11:09:48Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T11:09:49Z INFO [secret] Secret scanning is enabled
2024-10-07T11:09:49Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T11:09:49Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T11:09:50Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-07T11:09:50Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T11:09:50Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T11:09:50Z INFO Number of language-specific files num=0
2024-10-07T11:09:50Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T11:09:47Z	INFO	[vulndb] Need to update DB
2024-10-07T11:09:47Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T11:09:47Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:09:48Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T11:09:48Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-07T11:09:48Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-07T11:09:48Z	INFO	[misconfig] Need to update the built-in checks
2024-10-07T11:09:48Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T11:09:49Z	INFO	[secret] Secret scanning is enabled
2024-10-07T11:09:49Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T11:09:49Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T11:09:50Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-07T11:09:50Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T11:09:50Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T11:09:50Z	INFO	Number of language-specific files	num=0
2024-10-07T11:09:50Z	INFO	Detected config files	num=1
trivy_exitcode=0

github-actions · 2024-10-07T13:05:11Z

`Trivy Scan` Failed

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T13:05:03Z INFO [vulndb] Need to update DB
2024-10-07T13:05:03Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T13:05:03Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:05:04Z ERROR [vulndb] Failed to download artifact repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9eed63035e251610986ab4666a7ef45cfcf74e7f02daee94fe9958d1f7f2749b: TOOMANYREQUESTS: retry-after: 788.569µs, allowed: 44000/minute"
2024-10-07T13:05:04Z FATAL Fatal error init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Failed

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T13:05:03Z	INFO	[vulndb] Need to update DB
2024-10-07T13:05:03Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T13:05:03Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:05:04Z	ERROR	[vulndb] Failed to download artifact	repo="ghcr.io/aquasecurity/trivy-db:2" err="oci download error: failed to fetch the layer: GET https://ghcr.io/v2/aquasecurity/trivy-db/blobs/sha256:9eed63035e251610986ab4666a7ef45cfcf74e7f02daee94fe9958d1f7f2749b: TOOMANYREQUESTS: retry-after: 788.569µs, allowed: 44000/minute"
2024-10-07T13:05:04Z	FATAL	Fatal error	init error: DB error: failed to download vulnerability DB: OCI artifact error: failed to download vulnerability DB: failed to download artifact from any source
trivy_exitcode=1

github-actions · 2024-10-07T13:06:52Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T13:06:44Z INFO [vulndb] Need to update DB
2024-10-07T13:06:44Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T13:06:44Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:06:45Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:06:45Z INFO [vuln] Vulnerability scanning is enabled
2024-10-07T13:06:45Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-07T13:06:45Z INFO [misconfig] Need to update the built-in checks
2024-10-07T13:06:45Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T13:06:46Z INFO [secret] Secret scanning is enabled
2024-10-07T13:06:46Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T13:06:46Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T13:06:47Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-07T13:06:47Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T13:06:47Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T13:06:47Z INFO Number of language-specific files num=0
2024-10-07T13:06:47Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T13:06:44Z	INFO	[vulndb] Need to update DB
2024-10-07T13:06:44Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T13:06:44Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:06:45Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T13:06:45Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-07T13:06:45Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-07T13:06:45Z	INFO	[misconfig] Need to update the built-in checks
2024-10-07T13:06:45Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T13:06:46Z	INFO	[secret] Secret scanning is enabled
2024-10-07T13:06:46Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T13:06:46Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T13:06:47Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-07T13:06:47Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T13:06:47Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T13:06:47Z	INFO	Number of language-specific files	num=0
2024-10-07T13:06:47Z	INFO	Detected config files	num=1
trivy_exitcode=0

markgov · 2024-10-07T15:28:25Z

terraform/pagerduty/aws.tf

    delius_mis_prod_alarms                  = pagerduty_service_integration.delius_mis_prod.integration_key
    laa_edw_nonprod_alarms                  = pagerduty_service_integration.edw_non_prod.integration_key
    laa_edw_prod_alarms                     = pagerduty_service_integration.edw_prod.integration_key
+    cdpt_ifs_cloudwatch_routing_key         = pagerduty_event_orchestration_integration.cdpt_ifs_cloudwatch_integration.parameters[0].routing_key


can we remove _routing_key from cdpt_ifs_cloudwatch_routing_key. to cdpt-ifs-alarms as that's how they call it in the environments file

routing_key removed and code re-pushed

Correct code re-pushed

github-actions · 2024-10-07T15:45:17Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T15:45:09Z INFO [vulndb] Need to update DB
2024-10-07T15:45:09Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T15:45:09Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:45:11Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:45:11Z INFO [vuln] Vulnerability scanning is enabled
2024-10-07T15:45:11Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-07T15:45:11Z INFO [misconfig] Need to update the built-in checks
2024-10-07T15:45:11Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T15:45:11Z INFO [secret] Secret scanning is enabled
2024-10-07T15:45:11Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T15:45:11Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T15:45:12Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-07T15:45:12Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T15:45:12Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T15:45:12Z INFO Number of language-specific files num=0
2024-10-07T15:45:12Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T15:45:09Z	INFO	[vulndb] Need to update DB
2024-10-07T15:45:09Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T15:45:09Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:45:11Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:45:11Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-07T15:45:11Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-07T15:45:11Z	INFO	[misconfig] Need to update the built-in checks
2024-10-07T15:45:11Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T15:45:11Z	INFO	[secret] Secret scanning is enabled
2024-10-07T15:45:11Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T15:45:11Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T15:45:12Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-07T15:45:12Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T15:45:12Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T15:45:12Z	INFO	Number of language-specific files	num=0
2024-10-07T15:45:12Z	INFO	Detected config files	num=1
trivy_exitcode=0

…equest

github-actions · 2024-10-07T15:59:59Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/pagerduty

Running Trivy in terraform/pagerduty
2024-10-07T15:59:51Z INFO [vulndb] Need to update DB
2024-10-07T15:59:51Z INFO [vulndb] Downloading vulnerability DB...
2024-10-07T15:59:51Z INFO [vulndb] Downloading artifact... repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:59:53Z INFO [vulndb] Artifact successfully downloaded repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:59:53Z INFO [vuln] Vulnerability scanning is enabled
2024-10-07T15:59:53Z INFO [misconfig] Misconfiguration scanning is enabled
2024-10-07T15:59:53Z INFO [misconfig] Need to update the built-in checks
2024-10-07T15:59:53Z INFO [misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T15:59:53Z INFO [secret] Secret scanning is enabled
2024-10-07T15:59:53Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T15:59:53Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T15:59:54Z INFO [terraform scanner] Scanning root module file_path="."
2024-10-07T15:59:54Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T15:59:54Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T15:59:54Z INFO Number of language-specific files num=0
2024-10-07T15:59:54Z INFO Detected config files num=1
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/pagerduty

*****************************

Running Checkov in terraform/pagerduty
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
terraform scan results:

Passed checks: 28, Failed checks: 0, Skipped checks: 10


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/pagerduty

*****************************

Running tflint in terraform/pagerduty
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/pagerduty

*****************************

Running Trivy in terraform/pagerduty
2024-10-07T15:59:51Z	INFO	[vulndb] Need to update DB
2024-10-07T15:59:51Z	INFO	[vulndb] Downloading vulnerability DB...
2024-10-07T15:59:51Z	INFO	[vulndb] Downloading artifact...	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:59:53Z	INFO	[vulndb] Artifact successfully downloaded	repo="ghcr.io/aquasecurity/trivy-db:2"
2024-10-07T15:59:53Z	INFO	[vuln] Vulnerability scanning is enabled
2024-10-07T15:59:53Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-10-07T15:59:53Z	INFO	[misconfig] Need to update the built-in checks
2024-10-07T15:59:53Z	INFO	[misconfig] Downloading the built-in checks...
156.02 KiB / 156.02 KiB [------------------------------------------------------] 100.00% ? p/s 100ms2024-10-07T15:59:53Z	INFO	[secret] Secret scanning is enabled
2024-10-07T15:59:53Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-10-07T15:59:53Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.56/docs/scanner/secret#recommendation for faster secret detection
2024-10-07T15:59:54Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-10-07T15:59:54Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="pagerduty_token, pagerduty_user_token"
2024-10-07T15:59:54Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="pagerduty_team_membership.modernisation_platform_membership" value="cty.NilVal"
2024-10-07T15:59:54Z	INFO	Number of language-specific files	num=0
2024-10-07T15:59:54Z	INFO	Detected config files	num=1
trivy_exitcode=0

markgov

LGTM

Initial changes

1d8e8cc

SteveLinden requested a review from a team as a code owner October 3, 2024 16:01

SteveLinden closed this Oct 3, 2024

SteveLinden reopened this Oct 3, 2024

Additional changes

d812eb1

Fixing issue on not been declared in the root module

bfc4ecc

Fixing issue on not been declared in the root module

9f101ad

Removed delius_mis_non_prod from the live code

4c54c7a

markgov reviewed Oct 7, 2024

View reviewed changes

Removed '_routing_key' as per Mark's request

86776fc

Removed '_routing_key' and renamed to cdpt_ifs_alarms as per Mark's r…

c720ca8

…equest

markgov approved these changes Oct 7, 2024

View reviewed changes

SteveLinden added this pull request to the merge queue Oct 7, 2024

Merged via the queue into main with commit 2b44239 Oct 7, 2024
5 checks passed

SteveLinden deleted the festure/pagerduty-changes-1 branch October 7, 2024 16:13

SteveLinden mentioned this pull request Oct 7, 2024

Address changes to PagerDuty integration #5980

Closed

5 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Initial changes #8158

Initial changes #8158

SteveLinden commented Oct 3, 2024 •

edited

Loading

github-actions bot commented Oct 3, 2024

github-actions bot commented Oct 3, 2024

github-actions bot commented Oct 3, 2024

github-actions bot commented Oct 7, 2024

github-actions bot commented Oct 7, 2024

github-actions bot commented Oct 7, 2024

github-actions bot commented Oct 7, 2024

markgov Oct 7, 2024

SteveLinden Oct 7, 2024

SteveLinden Oct 7, 2024

github-actions bot commented Oct 7, 2024

github-actions bot commented Oct 7, 2024

markgov left a comment

Initial changes #8158

Initial changes #8158

Conversation

SteveLinden commented Oct 3, 2024 • edited Loading

github-actions bot commented Oct 3, 2024

Trivy Scan Failed

CTFLint Scan Success

Trivy Scan Failed

github-actions bot commented Oct 3, 2024

Trivy Scan Failed

CTFLint Scan Success

Trivy Scan Failed

github-actions bot commented Oct 3, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Oct 7, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Oct 7, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Oct 7, 2024

Trivy Scan Failed

CTFLint Scan Success

Trivy Scan Failed

github-actions bot commented Oct 7, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

markgov Oct 7, 2024

Choose a reason for hiding this comment

SteveLinden Oct 7, 2024

Choose a reason for hiding this comment

SteveLinden Oct 7, 2024

Choose a reason for hiding this comment

github-actions bot commented Oct 7, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Oct 7, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

markgov left a comment

Choose a reason for hiding this comment

SteveLinden commented Oct 3, 2024 •

edited

Loading

`Trivy Scan` Failed

`CTFLint Scan` Success

`Trivy Scan` Failed

`Trivy Scan` Failed

`CTFLint Scan` Success

`Trivy Scan` Failed

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Failed

`CTFLint Scan` Success

`Trivy Scan` Failed

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success