Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Accept anonymized Terraform plan #24

Open
patrislav opened this issue Feb 9, 2021 · 0 comments
Open

Accept anonymized Terraform plan #24

patrislav opened this issue Feb 9, 2021 · 0 comments
Labels
enhancement New feature or request

Comments

@patrislav
Copy link
Contributor

Abstract

While Terracost was designed with an assumption that the cost estimation backend is a fully trusted environment, this might not always be the case. The plan file may contain private and confidential data that the user should not send over network, especially to an untrusted backend.

Suggestions/ideas

The library needs to accept anonymized cost keys, that can be extracted from a Terraform plan (or tfstate) locally. The extraction could be performed using a third-party tool, though a function and command line utility should also be provided by Terracost.

The cost keys should only contain data about the resources that is absolutely necessary to perform the estimation. All other data must be stripped from the plan.

Implementation details

  • implement a function and command line utility to extract anonymized cost keys from a Terraform plan
  • accept the cost keys, in addition to the tfplan format, for cost estimation
@patrislav patrislav added the enhancement New feature or request label Feb 9, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@patrislav