tfaction-root.yaml
the list of target group configuration
Must contain a minimum of 1 items
target group configuration
the prefix of the working directory path
the prefix of the target
AWS Assume Role ARN
AWS Region. This is used for AWS OIDC Authentication, Getting Secrets from AWS Secrets Manager, and so on
list of AWS Secrets Manager's secret and exported environment variables
No Additional Itemstarget group configuration
AWS Secrets Manager's secret id
exported environment variables
No Additional Itemsexported environment variable
exported environment variable
AWS Secrets Manager's secret key
If true, drift detection is enabled in the target group
environment variables
GCP Service Account
GCP Workload Identity Provider
List of OAuth 2.0 access scopes to be included in the generated token for authenticating to Google Cloud
GCS Bucket name to store tfmigrate History files
terraform providers lock command's option
The type of runner that the job will run on
S3 Bucket name to store tfmigrate History files
list of exported GitHub Secrets
No Additional Itemsexported GitHub Secret
exported environment variable
exported GitHub Secret name
the template directory path to scaffold a working directory
configuration which is used in the job for 'terraform plan'
AWS Region. This is used for AWS OIDC Authentication, Getting Secrets from AWS Secrets Manager, and so on
Same definition as aws_regionList of OAuth 2.0 access scopes to be included in the generated token for authenticating to Google Cloud
Same definition as gcp_access_token_scopeslist of AWS Secrets Manager's secret and exported environment variables
Same definition as aws_secrets_managerconfiguration which is used in the job for 'terraform apply'
Same definition as terraform_plan_configconfiguration which is used in the job for 'tfmigrate plan'
Same definition as terraform_plan_configconfiguration which is used in the job for 'tfmigrate apply'
Same definition as terraform_plan_configconfiguration about aqua
If true, update-checksum is enabled.
update-checksum-action's prune
update-checksum-action's skip_push
tfaction searches working directories in this directory
Conftest policy directory
If this is true, tfaction creates pull requests as draft
Drift Detection
If true, drift detection is enabled in all working directories
Repository name of GitHub Issues
Repository owner of GitHub Issues
The scheduled workflow picks out working directories whose issues were updated before minimum_detection_interval hours
The number of issues that scheduled job handles
Pull Request label prefixes
Pull Request label prefix to specify the target
Pull Request label prefix to specify the tfmigrate target
Pull Request label prefix to skip terraform plan and apply. This is used to migrate states across states with tfmigrate
terraform providers lock command's option
Same definition as providers_lock_optsRenovate App login
This attribute is ignored if skip_terraform_by_renovate is false. If any one of labels in renovate_terraform_labels is set to the pull request, tfaction would run terraform plan and terraform apply. Detail
Pull Request label name
configuration about scaffold-working-directory
If true, creating aqua.yaml and adding packages is skipped
If this is true, terraform plan and terraform apply are skipped in case of pull request by Renovate. Detail
If true, test action runs tflint
If true, test action runs tfsec
If true, test action runs Trivy
working directory configuration file name