#help
Title
# help
e
echoing-piano-29088
11/02/2023, 7:00 PMhey there! trying to test out infracost in gitlab, and seem to have everything working, problem is I am using dynamic parent child pipelines with terraform, and the merge request I'm testing on succesfully commented, but it says there are not changes when the terraform plan job stage says there is. any help or guidance on how to suss out what is happening?
c
crooked-daybreak-55253
11/02/2023, 7:40 PMHi Lucas, have you seen this “matrix build” example? It sounds like you may need to do something similar to handle the child pipelines.
The key points are:
1. use
infracost diffinfracost_${PROJECT}.jsoninfracost comment gitlab--path="infracost_*.json"e
echoing-piano-29088
11/02/2023, 7:40 PMokay checking now. also trying to verify if my issue is because I haven't set a config file yet
ty for a response
any thoughts? getting this type of error, think I'm close though. This is in the top level pipeline trying to pickup the child artifacts and comment
Copy code
xecuting busybox-1.35.0-r17.trigger
OK: 85 MiB in 44 packages
$ echo -e "credentials \"$CI_SERVER_HOST\" {\n token = \"$CI_JOB_TOKEN\"\n}" > $TF_CLI_CONFIG_FILE
$ infracost comment gitlab --path="infracost-*.json" \ # collapsed multi-line command
time="2023-11-02T20:44:20Z" level=info msg="Enabled policies V2"
time="2023-11-02T20:44:20Z" level=info msg="Enabled tag policies"
Post an Infracost comment to GitLab
USAGE
infracost comment gitlab [flags]
EXAMPLES
Update comment on a merge request:
infracost comment gitlab --repo my-org/my-repo --merge-request 3 --path infracost.json --gitlab-token $GITLAB_TOKEN
Post a new comment to a commit:
infracost comment gitlab --repo my-org/my-repo --commit 2ca7182 --path infracost.json --behavior delete-and-new --gitlab-token $GITLAB_TOKEN
FLAGS
--behavior string Behavior when posting comment, one of:
update (default) Update latest comment
new Create a new comment
delete-and-new Delete previous matching comments and create a new comment (default "update")
--commit string Commit SHA to post comment on, mutually exclusive with merge-request
--dry-run Generate comment without actually posting to GitLab
--gitlab-server-url string GitLab Server URL (default "<https://gitlab.com>")
--gitlab-token string GitLab token
-h, --help help for gitlab
--merge-request int Merge request number to post comment on, mutually exclusive with commit
-p, --path stringArray Path to Infracost JSON files, glob patterns need quotes
--policy-path stringArray Path to Infracost policy files, glob patterns need quotes (experimental)
--repo string Repository in format owner/repo
--show-all-projects Show all projects in the table of the comment output
--show-skipped List unsupported and free resources
--tag string Customize hidden markdown tag used to detect comments posted by Infracost
GLOBAL FLAGS
--debug-report Generate a debug report file which can be sent to Infracost team
--log-level string Log level (trace, debug, info, warn, error, fatal)
--no-color Turn off colored output
Error: either --commit or --merge-request is required
Cleaning up project directory and file based variables
00:00
ERROR: Job failed: exit code 1this is what my pipeline job stage looks like
Copy code
infracost_comment:
stage: infracost_comment
image:
# Always use the latest 0.10.x version to pick up bug fixes and new resources.
# See <https://www.infracost.io/docs/integrations/cicd/#docker-images> for other options
name: infracost/infracost:ci-0.10
entrypoint: [""] # Override since we're running commands below
script:
- |
infracost comment gitlab --path="infracost-*.json" \
--repo=$CI_PROJECT_PATH \
--merge-request=$CI_MERGE_REQUEST_IID \
--gitlab-server-url=$CI_SERVER_URL \
--gitlab-token=$GITLAB_TOKEN \
--behavior=update
when: manualc
crooked-daybreak-55253
11/02/2023, 9:03 PMit looks like $CI_MERGE_REQUEST_IID isn’t set some for reason. Are you sure it’s a merge request pipeline? I see in the example we have
Copy code
rules:
- if: $CI_PIPELINE_SOURCE == 'merge_request_event'e
echoing-piano-29088
11/03/2023, 2:02 PMok will check
okay tried to push it over to merge request type and think it helped but running into other issues now. My infracost api key was working yesterday, but now as part of pipeline testing i'm cating the json file generated, and seeing errors
Copy code
{"code":0,"message":"Invalid API key\nPlease check your /root/.config/infracost/credentials.yml file or INFRACOST_API_KEY environment variable.\nIf you recently regenerated your API key, you can retrieve it from <https://dashboard.infracost.io>.\nSee <https://infracost.io/support> if you continue having issues.","data":null}] Copy code
$ echo -e "credentials \"$CI_SERVER_HOST\" {\n token = \"$CI_JOB_TOKEN\"\n}" > $TF_CLI_CONFIG_FILE
$ infracost comment gitlab --path="infracost-*.json" \ # collapsed multi-line command
time="2023-11-03T15:10:07Z" level=info msg="Enabled policies V2"
time="2023-11-03T15:10:07Z" level=info msg="Enabled tag policies"
Error: could not load input file infracost-*.json err: Infracost JSON file does not exist, generate it by running the following command then try again:
infracost breakdown --path /code --format json --out-file infracost-base.jsonc
crooked-daybreak-55253
11/03/2023, 3:31 PMdoes your api key work if you try it locally with the CLI?
e
echoing-piano-29088
11/03/2023, 3:31 PMabout to test that
yeah it works
set it as local cli api key, and breakdown command worked
c
crooked-daybreak-55253
11/03/2023, 3:35 PMok so it must be a problem with how it is set in the pipeline. looking at the example again:
Copy code
...
3. Create a project environment variable called INFRACOST_API_KEY with your API key. This should be masked. To make sure this can be used on all merge requests untick the 'Protect variable' option.e
echoing-piano-29088
11/03/2023, 3:36 PMyeah its good
c
crooked-daybreak-55253
11/03/2023, 3:38 PMhmm I’m not sure where it’s going wrong
e
echoing-piano-29088
11/03/2023, 3:39 PMhrrrmm, finishing up something, but I will try to add a lot more context in a few minutes here
or will that debug command be helpful