repos:
- repo: https://github.com/gruntwork-io/pre-commit
  rev: v0.1.17 # Get the latest from: https://github.com/gruntwork-io/pre-commit/releases
  hooks:
    - id: tflint
      args:
        - "--init"
        - "--config=.tflint.hcl"
    - id: tflint
      args:
        #        - "--module"
        - "--config=.tflint.hcl"
    - id: terraform-validate
    - id: terraform-fmt
- repo: https://github.com/antonbabenko/pre-commit-terraform
  rev: v1.76.0 # Get the latest from: https://github.com/antonbabenko/pre-commit-terraform/releases
  hooks:
    - id: terraform_tfsec
      args:
        - --args=--config-file .tfsec.yaml
    - id: terraform_docs
# checkov is good, but too thorough for our needs
#    - id: terraform_checkov
#      args:
#        - --args=--quiet
#        - --args=--skip-check CKV_AWS_144 # we don't cross-region replicate our s3
#- "--skip-check", "CKV_AWS_150", # We do not enable deletion protection for LBs