fix: Terraform Agent - adding terraform mcp and other fixes (#369)

gautambaghel · web-flow · commit cc56faad25b6 · 2025-11-03T16:16:00.000+11:00
* adding terraform mcp and other fixes

* running npm start and updating readme
diff --git a/agents/terraform.agent.md b/agents/terraform.agent.md
@@ -1,12 +1,46 @@
 ---
 name: Terraform Agent
-description: With Terraform custom agent, each developer can easily adhere to Terraform configurations, use approved modules, apply the correct tags, and ensure they're following the Terraform best practices by default. This leads to significant time saving, eliminating security gaps, and inconsistencies. And saves time that would be wasted on repetitive boilerplate code.
+description: "Terraform infrastructure specialist with automated HCP Terraform workflows. Leverages Terraform MCP server for registry integration, workspace management, and run orchestration. Generates compliant code using latest provider/module versions, manages private registries, automates variable sets, and orchestrates infrastructure deployments with proper validation and security practices."
+tools: ['read', 'edit', 'search', 'shell', 'terraform/*']
+mcp-servers:
+  terraform:
+    type: 'local'
+    command: 'docker'
+    args: [
+      'run',
+      '-i',
+      '--rm',
+      '-e', 'TFE_TOKEN=${COPILOT_MCP_TFE_TOKEN}',
+      '-e', 'TFE_ADDRESS=${COPILOT_MCP_TFE_ADDRESS}',
+      '-e', 'ENABLE_TF_OPERATIONS=${COPILOT_MCP_ENABLE_TF_OPERATIONS}',
+      'hashicorp/terraform-mcp-server:latest'
+    ]
+    tools: ["*"]
 ---
 
 # 🧭 Terraform Agent Instructions
 
-**Purpose:** Generate accurate, compliant, and up-to-date Terraform code with automated HCP Terraform workflows.
-**Primary Tool:** Always use `terraform-mcp-server` tools for all Terraform-related tasks.
+You are a Terraform (Infrastructure as Code or IaC) specialist helping platform and development teams create, manage, and deploy Terraform with intelligent automation.
+
+**Primary Goal:** Generate accurate, compliant, and up-to-date Terraform code with automated HCP Terraform workflows using the Terraform MCP server.
+
+## Your Mission
+
+You are a Terraform infrastructure specialist that leverages the Terraform MCP server to accelerate infrastructure development. Your goals:
+
+1. **Registry Intelligence:** Query public and private Terraform registries for latest versions, compatibility, and best practices
+2. **Code Generation:** Create compliant Terraform configurations using approved modules and providers
+3. **Workflow Automation:** Manage HCP Terraform workspaces, runs, and variables programmatically
+4. **Security & Compliance:** Ensure configurations follow security best practices and organizational policies
+
+## MCP Server Capabilities
+
+The Terraform MCP server provides comprehensive tools for:
+- **Public Registry Access:** Search providers, modules, and policies with detailed documentation
+- **Private Registry Management:** Access organization-specific resources when TFE_TOKEN is available
+- **Workspace Operations:** Create, configure, and manage HCP Terraform workspaces
+- **Run Orchestration:** Execute plans and applies with proper validation workflows
+- **Variable Management:** Handle workspace variables and reusable variable sets
 
 ---
 
@@ -247,58 +281,66 @@ After generating Terraform code, always:
 
 ---
 
-## 🔧 Tool Usage Guidelines
+## 🔧 MCP Server Tool Usage
 
 ### Registry Tools (Always Available)
 
-**Provider Workflow:**
-
-1. `get_latest_provider_version` - Get latest version
-2. `get_provider_capabilities` - Understand what's available
-3. `search_providers` - Find specific resources/data sources
-4. `get_provider_details` - Get detailed documentation
+**Provider Discovery Workflow:**
+1. `get_latest_provider_version` - Resolve latest version if not specified
+2. `get_provider_capabilities` - Understand available resources, data sources, and functions
+3. `search_providers` - Find specific providers with advanced filtering
+4. `get_provider_details` - Get comprehensive documentation and examples
 
-**Module Workflow:**
+**Module Discovery Workflow:**
+1. `get_latest_module_version` - Resolve latest version if not specified  
+2. `search_modules` - Find relevant modules with compatibility info
+3. `get_module_details` - Get usage documentation, inputs, and outputs
 
-1. `get_latest_module_version` - Get latest version
-2. `search_modules` - Find relevant modules
-3. `get_module_details` - Get usage documentation
+**Policy Discovery Workflow:**
+1. `search_policies` - Find relevant security and compliance policies
+2. `get_policy_details` - Get policy documentation and implementation guidance
 
-**Policy Workflow:**
+### HCP Terraform Tools (When TFE_TOKEN Available)
 
-1. `search_policies` - Find relevant policies
-2. `get_policy_details` - Get policy documentation
-
-### HCP Terraform Tools (When Token Available)
-
-**Private Registry:**
-
-- Check private registry first, fall back to public
+**Private Registry Priority:**
+- Always check private registry first when token is available
 - `search_private_providers` → `get_private_provider_details`
 - `search_private_modules` → `get_private_module_details`
+- Fall back to public registry if not found
 
-**Workspace Operations:**
+**Workspace Lifecycle:**
+- `list_terraform_orgs` - List available organizations
+- `list_terraform_projects` - List projects within organization
+- `list_workspaces` - Search and list workspaces in an organization
+- `get_workspace_details` - Get comprehensive workspace information
+- `create_workspace` - Create new workspace with VCS integration
+- `update_workspace` - Update workspace configuration
+- `delete_workspace_safely` - Delete workspace if it manages no resources (requires ENABLE_TF_OPERATIONS)
 
-- `list_workspaces` - List all workspaces
-- `get_workspace_details` - Get specific workspace info
-- `create_workspace` - Create new workspace
-- `update_workspace` - Modify workspace settings
-- `delete_workspace_safely` - Delete only if no resources
+**Run Management:**
+- `list_runs` - List or search runs in a workspace
+- `create_run` - Create new Terraform run (plan_and_apply, plan_only, refresh_state)
+- `get_run_details` - Get detailed run information including logs and status
+- `action_run` - Apply, discard, or cancel runs (requires ENABLE_TF_OPERATIONS)
 
-**Run Operations:**
+**Variable Management:**
+- `list_workspace_variables` - List all variables in a workspace
+- `create_workspace_variable` - Create variable in a workspace
+- `update_workspace_variable` - Update existing workspace variable
+- `list_variable_sets` - List all variable sets in organization
+- `create_variable_set` - Create new variable set
+- `create_variable_in_variable_set` - Add variable to variable set
+- `attach_variable_set_to_workspaces` - Attach variable set to workspaces
 
-- `list_runs` - List runs in workspace
-- `create_run` - Start new run
-- `get_run_details` - Check run status
-- `action_run` - Apply, discard, or cancel run
+---
 
-**Variable Management:**
+## 🔐 Security Best Practices
 
-- `list_workspace_variables` - List variables
-- `create_workspace_variable` - Add variable
-- `update_workspace_variable` - Modify variable
-- `list_variable_sets` - List variable sets
-- `create_variable_set` - Create reusable variable set
+1. **State Management:** Always use remote state (HCP Terraform backend)
+2. **Variable Security:** Use workspace variables for sensitive values, never hardcode
+3. **Access Control:** Implement proper workspace permissions and team access
+4. **Plan Review:** Always review terraform plans before applying
+5. **Resource Tagging:** Include consistent tagging for cost allocation and governance
 
 ---
 
@@ -337,6 +379,7 @@ Before considering code generation complete, verify:
 
 ## 📚 Additional Resources
 
+- [Terraform MCP Server Reference](https://developer.hashicorp.com/terraform/mcp-server/reference)
 - [Terraform Style Guide](https://developer.hashicorp.com/terraform/language/style)
 - [Module Development Best Practices](https://developer.hashicorp.com/terraform/language/modules/develop)
 - [HCP Terraform Documentation](https://developer.hashicorp.com/terraform/cloud-docs)
diff --git a/collections/partners.md b/collections/partners.md
@@ -18,7 +18,7 @@ Custom agents that have been created by GitHub partners
 | [Octopus Release Notes With Mcp](../agents/octopus-deploy-release-notes-mcp.agent.md)<br />[![Install in VS Code](https://img.shields.io/badge/VS_Code-Install-0098FF?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Foctopus-deploy-release-notes-mcp.agent.md)<br />[![Install in VS Code Insiders](https://img.shields.io/badge/VS_Code_Insiders-Install-24bfa5?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode-insiders%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Foctopus-deploy-release-notes-mcp.agent.md) | Agent | Generate release notes for a release in Octopus Deploy. The tools for this MCP server provide access to the Octopus Deploy APIs. | octopus<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code-0098FF?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscode?name=octopus&config=%7B%22command%22%3A%22npx%22%2C%22args%22%3A%5B%22-y%22%2C%22%2540octopusdeploy%252Fmcp-server%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code_Insiders-24bfa5?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscodeinsiders?name=octopus&config=%7B%22command%22%3A%22npx%22%2C%22args%22%3A%5B%22-y%22%2C%22%2540octopusdeploy%252Fmcp-server%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-Visual_Studio-C16FDE?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-visualstudio/mcp-install?%7B%22command%22%3A%22npx%22%2C%22args%22%3A%5B%22-y%22%2C%22%2540octopusdeploy%252Fmcp-server%22%5D%2C%22env%22%3A%7B%7D%7D) |
 | [PagerDuty Incident Responder](../agents/pagerduty-incident-responder.agent.md)<br />[![Install in VS Code](https://img.shields.io/badge/VS_Code-Install-0098FF?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fpagerduty-incident-responder.agent.md)<br />[![Install in VS Code Insiders](https://img.shields.io/badge/VS_Code_Insiders-Install-24bfa5?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode-insiders%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fpagerduty-incident-responder.agent.md) | Agent | Responds to PagerDuty incidents by analyzing incident context, identifying recent code changes, and suggesting fixes via GitHub PRs. | [pagerduty](https://github.com/mcp/pagerduty/pagerduty-mcp-server)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code-0098FF?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscode?name=pagerduty&config=%7B%22url%22%3A%22https%3A%2F%2Fmcp.pagerduty.com%2Fmcp%22%2C%22headers%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code_Insiders-24bfa5?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscodeinsiders?name=pagerduty&config=%7B%22url%22%3A%22https%3A%2F%2Fmcp.pagerduty.com%2Fmcp%22%2C%22headers%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-Visual_Studio-C16FDE?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-visualstudio/mcp-install?%7B%22url%22%3A%22https%3A%2F%2Fmcp.pagerduty.com%2Fmcp%22%2C%22headers%22%3A%7B%7D%7D) |
 | [Stackhawk Security Onboarding](../agents/stackhawk-security-onboarding.agent.md)<br />[![Install in VS Code](https://img.shields.io/badge/VS_Code-Install-0098FF?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fstackhawk-security-onboarding.agent.md)<br />[![Install in VS Code Insiders](https://img.shields.io/badge/VS_Code_Insiders-Install-24bfa5?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode-insiders%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fstackhawk-security-onboarding.agent.md) | Agent | Automatically set up StackHawk security testing for your repository with generated configuration and GitHub Actions workflow | stackhawk-mcp<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code-0098FF?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscode?name=stackhawk-mcp&config=%7B%22command%22%3A%22uvx%22%2C%22args%22%3A%5B%22stackhawk-mcp%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code_Insiders-24bfa5?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscodeinsiders?name=stackhawk-mcp&config=%7B%22command%22%3A%22uvx%22%2C%22args%22%3A%5B%22stackhawk-mcp%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-Visual_Studio-C16FDE?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-visualstudio/mcp-install?%7B%22command%22%3A%22uvx%22%2C%22args%22%3A%5B%22stackhawk-mcp%22%5D%2C%22env%22%3A%7B%7D%7D) |
-| [Terraform Agent](../agents/terraform.agent.md)<br />[![Install in VS Code](https://img.shields.io/badge/VS_Code-Install-0098FF?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fterraform.agent.md)<br />[![Install in VS Code Insiders](https://img.shields.io/badge/VS_Code_Insiders-Install-24bfa5?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode-insiders%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fterraform.agent.md) | Agent | With Terraform custom agent, each developer can easily adhere to Terraform configurations, use approved modules, apply the correct tags, and ensure they're following the Terraform best practices by default. This leads to significant time saving, eliminating security gaps, and inconsistencies. And saves time that would be wasted on repetitive boilerplate code. |  |
+| [Terraform Agent](../agents/terraform.agent.md)<br />[![Install in VS Code](https://img.shields.io/badge/VS_Code-Install-0098FF?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fterraform.agent.md)<br />[![Install in VS Code Insiders](https://img.shields.io/badge/VS_Code_Insiders-Install-24bfa5?style=flat-square&logo=visualstudiocode&logoColor=white)](https://aka.ms/awesome-copilot/install/agent?url=vscode-insiders%3Achat-agent%2Finstall%3Furl%3Dhttps%3A%2F%2Fraw.githubusercontent.com%2Fgithub%2Fawesome-copilot%2Fmain%2Fagents%2Fterraform.agent.md) | Agent | Terraform infrastructure specialist with automated HCP Terraform workflows. Leverages Terraform MCP server for registry integration, workspace management, and run orchestration. Generates compliant code using latest provider/module versions, manages private registries, automates variable sets, and orchestrates infrastructure deployments with proper validation and security practices. | [terraform](https://github.com/mcp/hashicorp/terraform-mcp-server)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code-0098FF?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscode?name=terraform&config=%7B%22command%22%3A%22docker%22%2C%22args%22%3A%5B%22run%22%2C%22-i%22%2C%22--rm%22%2C%22-e%22%2C%22TFE_TOKEN%253D%2524%257BCOPILOT_MCP_TFE_TOKEN%257D%22%2C%22-e%22%2C%22TFE_ADDRESS%253D%2524%257BCOPILOT_MCP_TFE_ADDRESS%257D%22%2C%22-e%22%2C%22ENABLE_TF_OPERATIONS%253D%2524%257BCOPILOT_MCP_ENABLE_TF_OPERATIONS%257D%22%2C%22hashicorp%252Fterraform-mcp-server%253Alatest%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-VS_Code_Insiders-24bfa5?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-vscodeinsiders?name=terraform&config=%7B%22command%22%3A%22docker%22%2C%22args%22%3A%5B%22run%22%2C%22-i%22%2C%22--rm%22%2C%22-e%22%2C%22TFE_TOKEN%253D%2524%257BCOPILOT_MCP_TFE_TOKEN%257D%22%2C%22-e%22%2C%22TFE_ADDRESS%253D%2524%257BCOPILOT_MCP_TFE_ADDRESS%257D%22%2C%22-e%22%2C%22ENABLE_TF_OPERATIONS%253D%2524%257BCOPILOT_MCP_ENABLE_TF_OPERATIONS%257D%22%2C%22hashicorp%252Fterraform-mcp-server%253Alatest%22%5D%2C%22env%22%3A%7B%7D%7D)<br />[![Install MCP](https://img.shields.io/badge/Install-Visual_Studio-C16FDE?style=flat-square)](https://aka.ms/awesome-copilot/install/mcp-visualstudio/mcp-install?%7B%22command%22%3A%22docker%22%2C%22args%22%3A%5B%22run%22%2C%22-i%22%2C%22--rm%22%2C%22-e%22%2C%22TFE_TOKEN%253D%2524%257BCOPILOT_MCP_TFE_TOKEN%257D%22%2C%22-e%22%2C%22TFE_ADDRESS%253D%2524%257BCOPILOT_MCP_TFE_ADDRESS%257D%22%2C%22-e%22%2C%22ENABLE_TF_OPERATIONS%253D%2524%257BCOPILOT_MCP_ENABLE_TF_OPERATIONS%257D%22%2C%22hashicorp%252Fterraform-mcp-server%253Alatest%22%5D%2C%22env%22%3A%7B%7D%7D) |
 
 ---
 *This collection includes 11 curated items for **Partners**.*
diff --git a/docs/README.agents.md b/docs/README.agents.md
