Update README.md

moazrai · web-flow · commit 0fc233baad9c · 2022-12-27T16:41:40.000+02:00
diff --git a/README.md b/README.md
@@ -2,10 +2,25 @@
 
 A git repository that I use to try terraform.
 
+
 ## Terraform Workflow Status
 
 [![Terraform](https://github.com/moazrai/terraform-basics/actions/workflows/terraform.yaml/badge.svg?branch=main&event=push)](https://github.com/moazrai/terraform-basics/actions/workflows/terraform.yaml)
 
+### Release Runbook
+1. Add a commit on a new branch with the changes
+2. Create a pull request into the main branch. This will trigger a workflow to:
+   1. Validate syntax of Terraform code (will catch the missing double-quote that happened before)
+   2. Check correct code formatting
+   3. Run the plan command and add a comment to the PR with the output plan changes
+   4. Run a static code analysis tool for scanning IaC files for misconfigurations that may lead to security or compliance problems (such as Checkov, tfsec or Snyk)
+3. Reviewer reviews code changes from the PR (if all checks have passed) and also review plan changes from the PR as well
+4. If the plan is okay, merge PR into main. This will trigger a workflow to run terraform apply to apply the plan
+
+### Notes:
+- We can trigger the apply workflow on creating a release instead of merging to main
+- Branch protection rule on main branch is added to not allow merging into main without having all the checks passed
+
 ## Configuring the Remote Backend to use Azure Storage with Terraform
 
 Use Microsoft Azure Storage to create a Remote Backend for Terraform to store the state file and lock the file to avoid mistakes or damage the existing infrastructure.
