git: 0155f0a274ec - main - Add security/tfsec: Security scanner for Terraform

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Li-Wen Hsu <lwhsu_at_FreeBSD.org>
Date: Tue, 25 Oct 2022 12:29:40 UTC
The branch main has been updated by lwhsu:

URL: https://cgit.FreeBSD.org/ports/commit/?id=0155f0a274ec73652bf6c99737761ab23c0af165

commit 0155f0a274ec73652bf6c99737761ab23c0af165
Author:     Gabriel M. Dutra <0xdutra@gmail.com>
AuthorDate: 2022-10-25 12:28:02 +0000
Commit:     Li-Wen Hsu <lwhsu@FreeBSD.org>
CommitDate: 2022-10-25 12:28:02 +0000

    Add security/tfsec: Security scanner for Terraform
    
    PR:             267319
---
 security/Makefile        |  2 ++
 security/tfsec/Makefile  | 22 ++++++++++++++++++++++
 security/tfsec/distinfo  |  5 +++++
 security/tfsec/pkg-descr |  3 +++
 4 files changed, 32 insertions(+)

diff --git a/security/Makefile b/security/Makefile
index d032b972b3ff..a296c7eaeeba 100644
--- a/security/Makefile
+++ b/security/Makefile
@@ -235,6 +235,7 @@
     SUBDIR += kc24
     SUBDIR += kdbxviewer
     SUBDIR += keepass
+    SUBDIR += keepass-diff
     SUBDIR += keepass-plugin-keepassrpc
     SUBDIR += keepassxc
     SUBDIR += keybase
@@ -1243,6 +1244,7 @@
     SUBDIR += teleport
     SUBDIR += testssl.sh
     SUBDIR += tfhe
+    SUBDIR += tfsec
     SUBDIR += theonionbox
     SUBDIR += tinc
     SUBDIR += tinc-devel
diff --git a/security/tfsec/Makefile b/security/tfsec/Makefile
new file mode 100644
index 000000000000..adf212733f8f
--- /dev/null
+++ b/security/tfsec/Makefile
@@ -0,0 +1,22 @@
+PORTNAME=	tfsec
+DISTVERSIONPREFIX=	v
+DISTVERSION=	1.28.0
+CATEGORIES=	security
+
+MAINTAINER=	0xdutra@gmail.com
+COMMENT=	Security scanner for Terraform
+WWW=		https://aquasecurity.github.io/tfsec
+
+LICENSE=	MIT
+LICENSE_FILE=	${WRKSRC}/LICENSE
+
+USES=		go:modules
+
+GO_MODULE=	github.com/aquasecurity/tfsec
+GO_TARGET=	./cmd/${PORTNAME}
+
+GO_BUILDFLAGS=	-ldflags="version.Version=${DISTVERSION}"
+
+PLIST_FILES=	bin/${PORTNAME}
+
+.include <bsd.port.mk>
diff --git a/security/tfsec/distinfo b/security/tfsec/distinfo
new file mode 100644
index 000000000000..9f191a59f706
--- /dev/null
+++ b/security/tfsec/distinfo
@@ -0,0 +1,5 @@
+TIMESTAMP = 1663944299
+SHA256 (go/security_tfsec/tfsec-v1.28.0/v1.28.0.mod) = 7d4d1b7236665ee2d02aa052acc61b5afe2456ebbc3f2c014a66840469a62185
+SIZE (go/security_tfsec/tfsec-v1.28.0/v1.28.0.mod) = 5092
+SHA256 (go/security_tfsec/tfsec-v1.28.0/v1.28.0.zip) = 08cc1cbff5f2f41751d36d7a690a835fd797d25e03852c733f79cd9d831cab4c
+SIZE (go/security_tfsec/tfsec-v1.28.0/v1.28.0.zip) = 6830052
diff --git a/security/tfsec/pkg-descr b/security/tfsec/pkg-descr
new file mode 100644
index 000000000000..35aeae105b33
--- /dev/null
+++ b/security/tfsec/pkg-descr
@@ -0,0 +1,3 @@
+Tool for static analysis of your terraform code to spot misconfigurations.
+Scan remote and local Terraform modules, support modules outputs formats:
+JSON, SARIF, CSV, CheckStyle, JUnit, text, Gif.