added dockerfile version

Author: codebytes

.devcontainer/securityDocker/Dockerfile

@@ -0,0 +1,24 @@
+FROM mcr.microsoft.com/devcontainers/base:bullseye
+RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
+    && apt-get -y install git ca-certificates curl apt-transport-https lsb-release gnupg \
+    python-is-python3 python3-pip gnupg software-properties-common 
+RUN wget -O- https://apt.releases.hashicorp.com/gpg | \
+    gpg --dearmor | \
+    sudo tee /usr/share/keyrings/hashicorp-archive-keyring.gpg
+RUN echo "deb [signed-by=/usr/share/keyrings/hashicorp-archive-keyring.gpg] https://apt.releases.hashicorp.com $(lsb_release -cs) main" | \
+    sudo tee /etc/apt/sources.list.d/hashicorp.list
+RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | \
+    sudo dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg \
+    && sudo chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg \
+    && echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | sudo tee /etc/apt/sources.list.d/github-cli.list > /dev/null
+RUN wget -q https://packages.microsoft.com/config/debian/11/packages-microsoft-prod.deb && \
+    sudo dpkg -i packages-microsoft-prod.deb
+RUN wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | gpg --dearmor | sudo tee /usr/share/keyrings/trivy.gpg > /dev/null && \
+    echo "deb [signed-by=/usr/share/keyrings/trivy.gpg] https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main" | sudo tee -a /etc/apt/sources.list.d/trivy.list 
+RUN apt-get update && apt-get install -y terraform  gh powershell azure-cli trivy
+RUN curl -L "$(curl -s https://api.github.com/repos/tenable/terrascan/releases/latest | grep -o -E "https://.+?_Linux_x86_64.tar.gz")" > terrascan.tar.gz && \
+    tar -xf terrascan.tar.gz terrascan && rm terrascan.tar.gz && \
+    install terrascan /usr/local/bin && rm terrascan
+RUN pip install checkov pre-commit
+RUN curl -s https://raw.githubusercontent.com/aquasecurity/tfsec/master/scripts/install_linux.sh | bash
+

.devcontainer/securityDocker/devcontainer.json

@@ -0,0 +1,25 @@
+{
+	"name": "SecureTerraformDocker",
+	"build": { "dockerfile": "Dockerfile" },
+	// Configure tool-specific properties.
+	"customizations": {
+		"vscode": {	
+			"extensions": [
+				"GitHub.copilot",
+				"GitHub.vscode-pull-request-github",
+				"streetsidesoftware.code-spell-checker",
+				"hashicorp.terraform",
+				"ms-azuretools.vscode-azureterraform",
+				"tfsec.tfsec",
+				"Bridgecrew.checkov"
+			]
+		}
+	},
+	// Use 'forwardPorts' to make a list of ports inside the container available locally.
+	// "forwardPorts": [],
+	// Use 'postCreateCommand' to run commands after the container is created.
+	// "postCreateCommand": "uname -a",
+	"postStartCommand": "git config --global --add safe.directory ${containerWorkspaceFolder}"
+	// Uncomment to connect as root instead. More info: https://aka.ms/dev-containers-non-root.
+	// "remoteUser": "root"
+}