Pre-commit

Question 1

List the pre-checks that DBT use

Answer 1

Trufflehog
Checkov
terraform fmt
terraform validate
tflint
terraform test
python tests - unit tests for python code within the terraform modules

Question 2

What is Trufflehog

Answer 2

security linter designed for developers to scan their code repositories for secrets accidentally committed to version control. Trufflehog can detect credentials like API keys, tokens, and private keys.

Question 3

What is Checkov

Answer 3

policy-as-code. Checkov scans cloud infrastructure configurations to find misconfigurations before they’re deployed.

Question 4

What is terraform fmt

Answer 4

The terraform fmt command is used to rewrite Terraform configuration files to a canonical format and style.

Question 5

What is terraform validate

Answer 5

The terraform validate command validates the configuration files in a directory, referring only to the configuration and not accessing any remote services such as remote state, provider APIs, etc.

Question 6

What is tflint

Answer 6

is a Terrafom linter. It can :
- Find possible errors (like invalid instance types) for Major Cloud providers (AWS/Azure/GCP).
- Warn about deprecated syntax, unused declarations.
- Enforce best practices, naming conventions.

Question 7

What is terraform test

Answer 7

The terraform test command reads in Terraform testing files and executes the tests within.