search
HomeDiscordGitHubSponsor
githubEdit

wrenchTechne

Techne provides the shared tooling that powers the entire platform: reusable GitHub Actions workflows, pre-commit hooks, development environments, and Codespaces.

Techne provides the shared tooling consumed by all platform teams. Changes to Techne repositories can have cross-team impact — all consumers pin to commit SHAs, so releases are coordinated when breaking changes are introduced.

hashtag
Platform Repositories 🏗️

Cover

OpenTofu Workflows

Reusable GitHub Actions called workflows for OpenTofu plan/apply with OIDC auth, state encryption, and job summaries.

Cover

Pre-Commit Hooks

Custom pre-commit hooks for IaC validation: tofu-fmt, tofu-validate, and tofu-test.

Cover

Development Setup

Standardized Ubuntu IaC developer environment setup script. One command installs all required tools.

Cover

OpenTofu Codespace

GitHub Codespace definition with pre-installed OpenTofu tooling for cloud-hosted IaC development.

hashtag
OpenTofu Workflows

The pt-techne-opentofu-workflowsarrow-up-right repository provides reusable GitHub Actions called workflows used by every IaC repository on the platform.

hashtag
Three-Tier Workflow Pattern

All infrastructure repositories follow this deployment workflow:

Workflow
Trigger
Environment

sandbox.yml

Pull requests

Sandbox

non-production.yml

Merge to main

Non-Production

production.yml

After non-production succeeds

Production

hashtag
Requirements

Each consuming repository must have these three GitHub Variables configured:

  • state_bucket — Cloud Storage bucket for remote state

  • state_kms_encryption_key — KMS key for state encryption

  • state_prefix — Path prefix within the bucket

hashtag
Pre-Commit Hooks

The pt-techne-pre-commit-hooksarrow-up-right repository provides Go-based pre-commit hooks for OpenTofu:

Hook
Description

tofu-fmt

Rewrites OpenTofu files to canonical format (.tofu, .tf, .tfvars)

tofu-validate

Validates syntax and internal consistency without making remote API calls

tofu-test

Executes automated tests from .tftest.hcl files in the module root

circle-info

pre-commit run -a must be run after any change in any platform repository. Run pre-commit autoupdate --freeze once at the start of each session to update hook SHAs.

hashtag
Development Setup

See Development Setup for the full guide. The setup script is maintained in pt-techne-development-setuparrow-up-right.

Last updated