From 36ce3a894d9ddff2916bc98d71380aa7167ff1d7 Mon Sep 17 00:00:00 2001 From: Kevin Cochran <40193276+kevincloud@users.noreply.github.com> Date: Mon, 6 Jul 2020 20:36:25 -0400 Subject: [PATCH] Exclude *.tfvars files (#3452) Co-authored-by: Kevin Cochran --- Terraform.gitignore | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/Terraform.gitignore b/Terraform.gitignore index 8778d48f..beb38d84 100644 --- a/Terraform.gitignore +++ b/Terraform.gitignore @@ -8,11 +8,12 @@ # Crash log files crash.log -# Ignore any .tfvars files that are generated automatically for each Terraform run. Most -# .tfvars files are managed as part of configuration and so should be included in -# version control. +# Exclude all .tfvars files, which are likely to contain sentitive data, such as +# password, private keys, and other secrets. These should not be part of version +# control as they are data points which are potentially sensitive and subject +# to change depending on the environment. # -# example.tfvars +*.tfvars # Ignore override files as they are usually used to override resources locally and so # are not checked in