Skip to content

Feature/policy scan#415

Open
tamim1517 wants to merge 10 commits into
devfrom
feature/policy_scan
Open

Feature/policy scan#415
tamim1517 wants to merge 10 commits into
devfrom
feature/policy_scan

Conversation

@tamim1517
Copy link
Copy Markdown
Contributor

@tamim1517 tamim1517 commented May 18, 2026

This PR adds a local policy scan script to make OPA/Rego policy testing easier for students.

Key Changes

  1. Added local OPA policy scan script.
  2. Supports service, resource, and policy-level scans.
  3. Supports message and details output.
  4. Runs existing branch name checker.
  5. Runs existing GCP linter.
  6. Shows scanned and skipped policy summary.

@JBarazani JBarazani self-requested a review May 18, 2026 22:21
@tamim1517
Copy link
Copy Markdown
Contributor Author

tamim1517 commented May 26, 2026

Updates:

  • Supports provider-level scan.
  • Supports shorthand flags for --provider, --service, --resource and --policy etc.
  • Automatically generates missing plan.json files using Terraform commands.
  • Separates Terraform plan.json generation from OPA policy scanning.
  • Uses concurrent processing for faster Terraform generation and OPA scans.
  • Adds separate worker controls for Terraform generation and OPA scanning.
  • Uses 2 default workers for Terraform generation and 4 default workers for OPA scanning.
  • Shows successful and failed policy scan summaries.
  • Reports failed checks with clear reasons.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JBarazani JBarazani Awaiting requested review from JBarazani

At least 1 approving review is required to merge this pull request.

Assignees

@JBarazani JBarazani

@tamim1517 tamim1517

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tamim1517 @JBarazani