fix validation on main.tf

.github/workflows/terraform-validate.yml

@@ -9,7 +9,7 @@ on:
 jobs:
 
   tofu-terraform-validate:
-    name: 'OpenTofu'
+    name: 'OpenTofu+Checkov'
     runs-on: ubuntu-latest
     defaults:
       run:

tf-bootstrap/main.tf

@@ -34,6 +34,31 @@ resource "github_repository" "this" {
   description = var.github_repository
   visibility  = "private"
   auto_init   = true # This is extremely important as flux_bootstrap_git will not work without a repository that has been initialised
+
+   # Enable vulnerability alerts
+  vulnerability_alerts = true
+
+  # Branch protection
+  branch_protection {
+    pattern    = "main"
+    enforce_admins = true
+
+    required_pull_request_reviews {
+      dismiss_stale_reviews          = true
+      require_code_owner_reviews     = true
+      required_approving_review_count = 1
+    }
+
+    required_status_checks {
+      strict   = true
+      contexts = ["validate"]
+    }
+
+    restrictions {
+      users = []
+      teams = []
+    }
+  }
 }
 
 # ==========================================