rebuilding lambda package (#3)

* rebuilding lambda package
* updating readme
* updating precommit
* updating terraform code based on pre-commit findings

Author: mliner

Diff for: .github/workflows/main.yml

@@ -0,0 +1,44 @@
+name: pre-commit
+
+on:
+  workflow_dispatch:
+  pull_request:
+    branches:
+      - main
+      - master
+
+env:
+  PYTHON_VERSION: "3.10"
+  TERRAFORM_DOCS_VERSION: "v0.16.0"
+  TFLINT_VERSION: "v0.46.1"
+
+permissions:
+  contents: read
+
+jobs:
+  pre-commit:
+    runs-on: ubuntu-22.04
+    env:
+      GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+    steps:
+      - uses: actions/checkout@v3
+      - name: Install terraform-docs
+        uses: jaxxstorm/[email protected]
+        with:
+          repo: terraform-docs/terraform-docs
+          tag: ${{ env.TERRAFORM_DOCS_VERSION }}
+          cache: enable
+
+      - name: TFLint cache
+        uses: actions/cache@v3
+        with:
+          path: ~/.tflint.d/plugins
+          key: ${{ runner.os }}-tflint-${{ hashFiles('.tflint.hcl') }}
+
+      - name: Install TFLint
+        uses: terraform-linters/setup-tflint@v2
+        with:
+          tflint_version: ${{ env.TFLINT_VERSION }}
+
+      - name: Run pre-commit
+        uses: pre-commit/[email protected]

Diff for: .github/workflows/pre-commit.yml

@@ -0,0 +1,52 @@
+name: Terraform validate
+
+on:
+  workflow_dispatch:
+  pull_request:
+    branches:
+      - main
+      - master
+
+permissions:
+  contents: read
+
+jobs:
+  versionExtract:
+    name: Extract min/max Terraform versions
+    runs-on: ubuntu-22.04
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Extract Terraform min/max versions
+        id: minMax
+        uses: clowdhaus/terraform-min-max@main
+        with:
+          directory: .
+    outputs:
+      minVersion: ${{ steps.minMax.outputs.minVersion }}
+      maxVersion: ${{ steps.minMax.outputs.maxVersion }}
+
+  terraform-validate:
+    runs-on: ubuntu-22.04
+    needs: versionExtract
+    strategy:
+      matrix:
+        tf_ver:
+          - ${{ needs.versionExtract.outputs.minVersion }}
+          - ${{ needs.versionExtract.outputs.maxVersion }}
+
+    steps:
+    - uses: actions/checkout@v3
+    - uses: hashicorp/setup-terraform@v2
+      with:
+        terraform_version: ${{ matrix.tf_ver }}
+
+    - name: Terraform Init
+      id: init
+      run: terraform init
+
+    - name: Terraform Validate
+      id: validate
+      run: terraform validate

Diff for: .github/workflows/validate.yml

@@ -1,2 +1,9 @@
-main
-.terraform
+### Terraform ###
+# Local .terraform directories
+**/.terraform/*
+.terraform.lock.hcl
+
+.env
+
+# JetBrains
+.idea

Diff for: .gitignore

@@ -1,6 +1,6 @@
 repos:
   - repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v3.1.0
+    rev: v4.4.0
     hooks:
       - id: trailing-whitespace
       - id: check-merge-conflict
@@ -9,30 +9,20 @@ repos:
       - id: detect-private-key
       - id: end-of-file-fixer
 
-  - repo: https://github.com/gruntwork-io/pre-commit
-    rev: v0.1.9
-    hooks:
-      - id: tflint
-      - id: terraform-validate
-      - id: tflint
-      - id: shellcheck
-      - id: gofmt
-
-  - repo: git://github.com/antonbabenko/pre-commit-terraform
-    rev: v1.31.0
+  - repo: https://github.com/antonbabenko/pre-commit-terraform
+    rev: v1.86.0
     hooks:
     - id: terraform_fmt
+    - id: terraform_tflint
+    - id: terraform_validate
+    # - id: terraform_checkov
     - id: terraform_docs
       args:
-        - '--args=--no-providers --sort-by-required'
-
-  - repo: git://github.com/pecigonzalo/pre-commit-terraform-vars
-    rev: 8e947e99c45314397a8caacebefab44d74227b6b
-    hooks:
-    - id: terraform-vars
+        - '--args=--config=.terraform-docs.yml'
 
   - repo: https://github.com/Yelp/detect-secrets
-    rev: v0.13.1
+    rev: v1.4.0
     hooks:
       - id: detect-secrets
         args: ['--baseline', '.secrets.baseline']
+        exclude: terraform.tfstate

Diff for: .pre-commit-config.yaml

@@ -0,0 +1,14 @@
+formatter: markdown table
+
+output:
+  mode: inject
+  template: |-
+    <!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+    {{ .Content }}
+    <!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+
+sections:
+  hide:
+    - providers
+sort:
+  by: required

Diff for: .terraform-docs.yml

@@ -0,0 +1,12 @@
+plugin "terraform" {
+  enabled = true
+  version = "0.1.1"
+  source  = "github.com/terraform-linters/tflint-ruleset-terraform"
+  preset  = "recommended"
+}
+
+plugin "aws" {
+  enabled = true
+  version = "0.32.0"
+  source  = "github.com/terraform-linters/tflint-ruleset-aws"
+}

Diff for: .tflint.hcl

@@ -0,0 +1,3 @@
+golang 1.21.0
+terraform-docs 0.16.0
+tflint 0.46.1

Diff for: .tool-versions

@@ -16,25 +16,46 @@ A terraform module to deploy a CloudWatch report lambda function and to provide
 <!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
 ## Requirements
 
-No requirements.
+| Name | Version |
+|------|---------|
+| <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.0 |
+| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 4.0 |
+
+## Modules
+
+No modules.
+
+## Resources
+
+| Name | Type |
+|------|------|
+| [aws_cloudwatch_event_rule.trigger](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_event_rule) | resource |
+| [aws_cloudwatch_event_target.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_event_target) | resource |
+| [aws_cloudwatch_log_group.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_log_group) | resource |
+| [aws_iam_policy.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |
+| [aws_iam_role.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource |
+| [aws_iam_role_policy_attachment.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |
+| [aws_lambda_function.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/lambda_function) | resource |
+| [aws_lambda_permission.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/lambda_permission) | resource |
+| [aws_ses_email_identity.target](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ses_email_identity) | resource |
+| [aws_ses_email_identity.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ses_email_identity) | resource |
 
 ## Inputs
 
 | Name | Description | Type | Default | Required |
 |------|-------------|------|---------|:--------:|
-| cw\_metric\_dimension | n/a | `any` | n/a | yes |
-| cw\_metric\_name | n/a | `any` | n/a | yes |
-| cw\_metric\_namespace | n/a | `any` | n/a | yes |
-| email\_source\_address | n/a | `any` | n/a | yes |
-| email\_target\_address | n/a | `any` | n/a | yes |
-| name | n/a | `any` | n/a | yes |
-| region | n/a | `any` | n/a | yes |
-| lambda\_schedule | n/a | `string` | `"cron(0 0 * * ? *)"` | no |
+| <a name="input_cw_metric_dimension"></a> [cw\_metric\_dimension](#input\_cw\_metric\_dimension) | CloudWatch metric dimension | `string` | n/a | yes |
+| <a name="input_cw_metric_name"></a> [cw\_metric\_name](#input\_cw\_metric\_name) | CloudWatch metric name | `string` | n/a | yes |
+| <a name="input_cw_metric_namespace"></a> [cw\_metric\_namespace](#input\_cw\_metric\_namespace) | CloudWatch metric namespace | `string` | n/a | yes |
+| <a name="input_email_source_address"></a> [email\_source\_address](#input\_email\_source\_address) | n/a | `string` | n/a | yes |
+| <a name="input_email_target_address"></a> [email\_target\_address](#input\_email\_target\_address) | n/a | `string` | n/a | yes |
+| <a name="input_name"></a> [name](#input\_name) | n/a | `string` | n/a | yes |
+| <a name="input_region"></a> [region](#input\_region) | n/a | `string` | n/a | yes |
+| <a name="input_lambda_schedule"></a> [lambda\_schedule](#input\_lambda\_schedule) | n/a | `string` | `"cron(0 0 * * ? *)"` | no |
 
 ## Outputs
 
-No output.
-
+No outputs.
 <!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
 
 ## Contributing and reporting issues
@@ -52,6 +73,20 @@ check your code before you will create pull-requests. See
 [GitHub Actions documentation](https://docs.github.com/en/actions) for further
 details.
 
+### Building lambda package
+
+- use `asdf` to install necessary go version
+- compile go code
+- zip compiled code and push to the repository
+
+```bash
+asdf install
+
+GOARCH=amd64 GOOS=linux go build -o bootstrap main.go
+
+zip lambda.zip bootstrap
+
+```
 
 ## License
 

Diff for: README.md

@@ -1,10 +1,29 @@
 variable "lambda_schedule" {
+  type    = string
   default = "cron(0 0 * * ? *)"
 }
-variable "region" {}
-variable "cw_metric_name" {}
-variable "cw_metric_namespace" {}
-variable "cw_metric_dimension" {}
-variable "name" {}
-variable "email_source_address" {}
-variable "email_target_address" {}
+
+variable "region" {
+  type = string
+}
+variable "cw_metric_name" {
+  type        = string
+  description = "CloudWatch metric name"
+}
+variable "cw_metric_namespace" {
+  type        = string
+  description = "CloudWatch metric namespace"
+}
+variable "cw_metric_dimension" {
+  type        = string
+  description = "CloudWatch metric dimension"
+}
+variable "name" {
+  type = string
+}
+variable "email_source_address" {
+  type = string
+}
+variable "email_target_address" {
+  type = string
+}