New files for terraform/environments

[github-actions]

This PR was automatically created via a GitHub action workflow 🤖

This PR commits new files under terraform/environments.

[github-actions]

Trivy Scan Success

Show Output

```hcl

---

Trivy will check the following folders:
terraform/environments/cooker

---

Running Trivy in terraform/environments/cooker
2024-11-25T12:41:46Z INFO [vulndb] Need to update DB
2024-11-25T12:41:46Z INFO [vulndb] Downloading vulnerability DB...
2024-11-25T12:41:46Z INFO [vulndb] Downloading artifact... repo="public.ecr.aws/aquasecurity/trivy-db:2"
2024-11-25T12:41:48Z INFO [vulndb] Artifact successfully downloaded repo="public.ecr.aws/aquasecurity/trivy-db:2"
2024-11-25T12:41:48Z INFO [vuln] Vulnerability scanning is enabled
2024-11-25T12:41:48Z INFO [misconfig] Misconfiguration scanning is enabled
2024-11-25T12:41:48Z INFO [misconfig] Need to update the built-in checks
2024-11-25T12:41:48Z INFO [misconfig] Downloading the built-in checks...
2024-11-25T12:41:48Z ERROR [misconfig] Falling back to embedded checks err="failed to download built-in policies: download error: OCI repository error: 1 error occurred:\n\t* GET https://ghcr.io/v2/aquasecurity/trivy-checks/manifests/1: TOOMANYREQUESTS: retry-after: 777.065µs, allowed: 44000/minute\n\n"
2024-11-25T12:41:48Z INFO [secret] Secret scanning is enabled
2024-11-25T12:41:48Z INFO [secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-25T12:41:48Z INFO [secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-25T12:41:49Z INFO [terraform scanner] Scanning root module file_path="."
2024-11-25T12:41:49Z WARN [terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly. module="root" variables="networking"
2024-11-25T12:41:49Z ERROR [terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable. block="module.ram-ec2-retagging[0].data.aws_subnet.host" value="cty.NilVal"
2024-11-25T12:41:49Z INFO [terraform executor] Ignore finding rule="aws-s3-encryption-customer-key" range="github.com/ministryofjustice/modernisation-platform-terraform-s3-bucket?ref=v8.2.0/main.tf:187-197"
2024-11-25T12:41:49Z INFO Number of language-specific files num=0
2024-11-25T12:41:49Z INFO Detected config files num=2
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/environments/cooker

*****************************

Running Checkov in terraform/environments/cooker
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
2024-11-25 12:41:52,094 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-terraform-s3-bucket?ref=v8.2.0:None (for external modules, the --download-external-modules flag is required)
terraform scan results:

Passed checks: 7, Failed checks: 0, Skipped checks: 1


checkov_exitcode=0

CTFLint Scan Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.9.1)
tflint will check the following folders:
terraform/environments/cooker

*****************************

Running tflint in terraform/environments/cooker
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

Trivy Scan Success

Show Output

*****************************

Trivy will check the following folders:
terraform/environments/cooker

*****************************

Running Trivy in terraform/environments/cooker
2024-11-25T12:41:46Z	INFO	[vulndb] Need to update DB
2024-11-25T12:41:46Z	INFO	[vulndb] Downloading vulnerability DB...
2024-11-25T12:41:46Z	INFO	[vulndb] Downloading artifact...	repo="public.ecr.aws/aquasecurity/trivy-db:2"
2024-11-25T12:41:48Z	INFO	[vulndb] Artifact successfully downloaded	repo="public.ecr.aws/aquasecurity/trivy-db:2"
2024-11-25T12:41:48Z	INFO	[vuln] Vulnerability scanning is enabled
2024-11-25T12:41:48Z	INFO	[misconfig] Misconfiguration scanning is enabled
2024-11-25T12:41:48Z	INFO	[misconfig] Need to update the built-in checks
2024-11-25T12:41:48Z	INFO	[misconfig] Downloading the built-in checks...
2024-11-25T12:41:48Z	ERROR	[misconfig] Falling back to embedded checks	err="failed to download built-in policies: download error: OCI repository error: 1 error occurred:\n\t* GET https://ghcr.io/v2/aquasecurity/trivy-checks/manifests/1: TOOMANYREQUESTS: retry-after: 777.065µs, allowed: 44000/minute\n\n"
2024-11-25T12:41:48Z	INFO	[secret] Secret scanning is enabled
2024-11-25T12:41:48Z	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-11-25T12:41:48Z	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.57/docs/scanner/secret#recommendation for faster secret detection
2024-11-25T12:41:49Z	INFO	[terraform scanner] Scanning root module	file_path="."
2024-11-25T12:41:49Z	WARN	[terraform parser] Variable values was not found in the environment or variable files. Evaluating may not work correctly.	module="root" variables="networking"
2024-11-25T12:41:49Z	ERROR	[terraform evaluator] Failed to expand block. Invalid "for-each" argument. Must be known and iterable.	block="module.ram-ec2-retagging[0].data.aws_subnet.host" value="cty.NilVal"
2024-11-25T12:41:49Z	INFO	[terraform executor] Ignore finding	rule="aws-s3-encryption-customer-key" range="github.com/ministryofjustice/modernisation-platform-terraform-s3-bucket?ref=v8.2.0/main.tf:187-197"
2024-11-25T12:41:49Z	INFO	Number of language-specific files	num=0
2024-11-25T12:41:49Z	INFO	Detected config files	num=2
trivy_exitcode=0