This repository contains an example of how to create a pipeline for managing your Infrastructure as Code (IaC). In this example, I am using GCP Cloud Build as my CICD tool of choice and Terraform as my Infrastructure as Code tool.
The pipeline runs through the same steps you would do manually on your local machine. I created the pipeline to get triggered on any pull requests opened in order to verify that the Infrastructure as Code is syntactically correct and it runs through successfully from creation to destruction. I also added in a step to check the IaC for any security or vulnerability findings using an awesome third party tool called checkov.
This can be used with Terragrunt as well, there is a Terragrunt GCP Cloud Builder that can be used the same way.
About
This repository contains an example of how to create a pipeline for Infrastructure as Code (IaC).