If you create an atlantis.yaml it must have a projects section otherwise no projects will be found.
Custom commands run in the directory that contain the checked out repo, so can reference scripts from the repo. The output of the custom command is captured and displayed on the PR. See this example running env during the plan stage.
A default workflow is defined with the following steps:
workflows:
default:
plan:
steps: [init, plan]
apply:
steps: [apply]
Pre and post-workflow commands can be defined in the server-side config (ie: repos.yaml). Their output is not recorded on the PR.
Atlantis auto plans by default, ie: runs plan on every commit for the projects which have file changes.
Additional features:
- lock the workspace whilst a plan is unapplied to avoid conflicts between PRs
- support for terraform workspaces. These can be planed/applied in parallel.
- plan only mode if you have another pipeline that does the apply.
- policy checking via conftest
- plan/apply multiple projects in a single command using regexes
automerge: truewill merge the PR once applied. Will squash merge if that's the only option. The squashed message will contain the pr title, description, and git commit messages.
atlantis --help will show possible commands
atlantis version will show the terraform version not the atlantis version.
atlantis plan -p myproject -- -replace=aws_dynamodb_table.dynamodb_table to destroy and recreate a resource. Anything after -- is passed to terraform.
atlantis plan -p myproject -- -destroy to remove myproject (run before deleting the project's files)
atlantis state -d dir rm 'aws_instance.example["foo"]' -- -lock=false modify state
helm repo add runatlantis https://runatlantis.github.io/helm-charts
helm install -f https://raw.githubusercontent.com/runatlantis/helm-charts/main/charts/atlantis/test-values.yaml my-atlantis runatlantis/atlantis --debug --version 3.12.11
To specify a custom image, set image.repository and image.tag.
The chart installs:
- Pod, Service, Ingress
- ServiceAccount, Secret, ConfigMap,
- StatefulSet
atlantis apply will apply all projects independently, ie: the failure of a project won't stop the others applying. See #2076
If this is a concern, then run the projects separately, eg: atlantis apply -p test followed by atlantis apply -p prod
By default atlantis will allow anyone to approve the PR before apply. To only allow approvers that are code owners, set the branch protection rules to Require review from Code Owners and in atlantis.yaml set
apply_requirements: [mergeable]
To ensure this doesn't prevent merging if atlantis/apply is required on your branch, set ATLANTIS_GH_ALLOW_MERGEABLE_BYPASS_APPLY=TRUE see runatlantis/atlantis#2112 (comment).
If you want to ensure PRs are merged after apply, set automerge.
eg: atlantis.yaml
- name: test
dir: .
workflow: test
workspace: test
- name: prod
dir: .
workflow: prod
workspace: prod
atlantis plan will run in project order, ie: test then prod.
atlantis apply will run in workspace name alphabetical order, ie: prod then test.
In order to run parallel plans, each project must have it's own workspace.
Forgot to apply before merge - raise a new PR with an empty commit and run atlantis -p <project_name>
Empty plan with no text - check that you have a valid version of terraform in atlantis.yaml
Plans on push but commands are ignored - make sure the webhooks are receiving the correct events.
checking if workspace exists: stat ...: no such file or directory - if trying to run atlantis plan via comment on any empty PR, push a trivial comment first.
Ran Plan for 0 projects - If you've made changes outside any project (eg: to atlantis.yaml) you'll need to explicitly provide the project to plan, eg: atlantis plan -p awesome_project. Also make sure you have dir defined in atlantis.yaml (see #1919).
Ran Apply for 0 projects - make sure you have planned first.