terraform-ibm-modules
diff --git a/‎.secrets.baseline‎
Lines changed: 1 addition & 1 deletion b/‎.secrets.baseline‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎README.md‎
Lines changed: 5 additions & 16 deletions b/‎README.md‎
Lines changed: 5 additions & 16 deletions
@@ -3,7 +3,7 @@
     "files": "go.sum|^.secrets.baseline$",
     "lines": null
   },
-  "generated_at": "2025-10-10T20:14:38Z",
+  "generated_at": "2025-11-11T18:32:07Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"
 
@@ -65,9 +65,9 @@ statement instead the previous block.
 
 | Name | Source | Version |
 |------|--------|---------|
-| <a name="module_devsecops_cc_toolchain"></a> [devsecops\_cc\_toolchain](#module\_devsecops\_cc\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-cc-toolchain | v2.6.1 |
-| <a name="module_devsecops_cd_toolchain"></a> [devsecops\_cd\_toolchain](#module\_devsecops\_cd\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-cd-toolchain | v2.6.1 |
-| <a name="module_devsecops_ci_toolchain"></a> [devsecops\_ci\_toolchain](#module\_devsecops\_ci\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-ci-toolchain | v2.7.2 |
+| <a name="module_devsecops_cc_toolchain"></a> [devsecops\_cc\_toolchain](#module\_devsecops\_cc\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-cc-toolchain | v2.7.0 |
+| <a name="module_devsecops_cd_toolchain"></a> [devsecops\_cd\_toolchain](#module\_devsecops\_cd\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-cd-toolchain | v2.7.0 |
+| <a name="module_devsecops_ci_toolchain"></a> [devsecops\_ci\_toolchain](#module\_devsecops\_ci\_toolchain) | git::https://github.com/terraform-ibm-modules/terraform-ibm-devsecops-ci-toolchain | v2.8.0 |
 | <a name="module_prereqs"></a> [prereqs](#module\_prereqs) | ./prereqs | n/a |
 
 ### Resources
@@ -107,6 +107,7 @@ statement instead the previous block.
 | <a name="input_app_repo_existing_url"></a> [app\_repo\_existing\_url](#input\_app\_repo\_existing\_url) | Bring your own existing application repository by providing the URL. This will create an integration for your application repository instead of cloning the default sample. Repositories existing in a different org will require the use of Git token. See `app_repo_git_token_secret_name` under optional variables. | `string` | `"__NOTSET__"` | no |
 | <a name="input_app_repo_git_token_secret_crn"></a> [app\_repo\_git\_token\_secret\_crn](#input\_app\_repo\_git\_token\_secret\_crn) | The CRN of the Git token used for accessing the sample application repository. | `string` | `""` | no |
 | <a name="input_app_repo_git_token_secret_name"></a> [app\_repo\_git\_token\_secret\_name](#input\_app\_repo\_git\_token\_secret\_name) | Name of the Git token secret in the secret provider used for accessing the sample (or bring your own) application repository. | `string` | `""` | no |
+| <a name="input_app_repo_name"></a> [app\_repo\_name](#input\_app\_repo\_name) | The repository name. | `string` | `""` | no |
 | <a name="input_app_repo_secret_group"></a> [app\_repo\_secret\_group](#input\_app\_repo\_secret\_group) | Secret group for the App repository secret. Defaults to the value set in `sm_secret_group` if not set. Only used with `Secrets Manager`. | `string` | `""` | no |
 | <a name="input_artifactory_dashboard_url"></a> [artifactory\_dashboard\_url](#input\_artifactory\_dashboard\_url) | Type the URL that you want to navigate to when you click the Artifactory integration tile. | `string` | `""` | no |
 | <a name="input_artifactory_integration_name"></a> [artifactory\_integration\_name](#input\_artifactory\_integration\_name) | The name of the Artifactory tool integration | `string` | `"artifactory-dockerconfigjson"` | no |
@@ -215,13 +216,9 @@ statement instead the previous block.
 | <a name="input_cc_toolchain_resource_group"></a> [cc\_toolchain\_resource\_group](#input\_cc\_toolchain\_resource\_group) | Resource group within which the toolchain is created. | `string` | `""` | no |
 | <a name="input_cc_trigger_manual_enable"></a> [cc\_trigger\_manual\_enable](#input\_cc\_trigger\_manual\_enable) | Set to `true` to enable the CC pipeline Manual trigger. | `bool` | `true` | no |
 | <a name="input_cc_trigger_manual_name"></a> [cc\_trigger\_manual\_name](#input\_cc\_trigger\_manual\_name) | The name of the CC pipeline Manual trigger. | `string` | `"CC Manual Trigger"` | no |
-| <a name="input_cc_trigger_manual_pruner_enable"></a> [cc\_trigger\_manual\_pruner\_enable](#input\_cc\_trigger\_manual\_pruner\_enable) | Set to `true` to enable the manual Pruner trigger. | `bool` | `true` | no |
-| <a name="input_cc_trigger_manual_pruner_name"></a> [cc\_trigger\_manual\_pruner\_name](#input\_cc\_trigger\_manual\_pruner\_name) | The name of the manual Pruner trigger. | `string` | `"Evidence Pruner Manual Trigger"` | no |
 | <a name="input_cc_trigger_timed_cron_schedule"></a> [cc\_trigger\_timed\_cron\_schedule](#input\_cc\_trigger\_timed\_cron\_schedule) | Only needed for timer triggers. Cron expression that indicates when this trigger will activate. Maximum frequency is every 5 minutes. The string is based on UNIX crontab syntax: minute, hour, day of month, month, day of week. Example: 0 *\_/2 * * * - every 2 hours. | `string` | `"0 4 * * *"` | no |
 | <a name="input_cc_trigger_timed_enable"></a> [cc\_trigger\_timed\_enable](#input\_cc\_trigger\_timed\_enable) | Set to `true` to enable the CI pipeline Timed trigger. | `bool` | `false` | no |
 | <a name="input_cc_trigger_timed_name"></a> [cc\_trigger\_timed\_name](#input\_cc\_trigger\_timed\_name) | The name of the CC pipeline Timed trigger. | `string` | `"CC Timed Trigger"` | no |
-| <a name="input_cc_trigger_timed_pruner_enable"></a> [cc\_trigger\_timed\_pruner\_enable](#input\_cc\_trigger\_timed\_pruner\_enable) | Set to `true` to enable the timed Pruner trigger. | `bool` | `false` | no |
-| <a name="input_cc_trigger_timed_pruner_name"></a> [cc\_trigger\_timed\_pruner\_name](#input\_cc\_trigger\_timed\_pruner\_name) | The name of the timed Pruner trigger. | `string` | `"Evidence Pruner Timed Trigger"` | no |
 | <a name="input_cd_artifactory_token_secret_crn"></a> [cd\_artifactory\_token\_secret\_crn](#input\_cd\_artifactory\_token\_secret\_crn) | The CRN for the Artifactory access secret. | `string` | `""` | no |
 | <a name="input_cd_authorization_policy_creation"></a> [cd\_authorization\_policy\_creation](#input\_cd\_authorization\_policy\_creation) | Disable Toolchain Service to Secrets Manager/Key Protect/Notifications Service authorization policy creation. To disable set the value to `disabled`. | `string` | `""` | no |
 | <a name="input_cd_change_management_group"></a> [cd\_change\_management\_group](#input\_cd\_change\_management\_group) | Specify group for change management repository | `string` | `""` | no |
@@ -343,13 +340,9 @@ statement instead the previous block.
 | <a name="input_cd_trigger_manual_name"></a> [cd\_trigger\_manual\_name](#input\_cd\_trigger\_manual\_name) | The name of the CI pipeline Manual trigger. | `string` | `"Manual CD Trigger"` | no |
 | <a name="input_cd_trigger_manual_promotion_enable"></a> [cd\_trigger\_manual\_promotion\_enable](#input\_cd\_trigger\_manual\_promotion\_enable) | Set to `true` to enable the CD pipeline Manual Promotion trigger. | `bool` | `true` | no |
 | <a name="input_cd_trigger_manual_promotion_name"></a> [cd\_trigger\_manual\_promotion\_name](#input\_cd\_trigger\_manual\_promotion\_name) | The name of the CD pipeline Manual Promotion trigger. | `string` | `"Manual Promotion Trigger"` | no |
-| <a name="input_cd_trigger_manual_pruner_enable"></a> [cd\_trigger\_manual\_pruner\_enable](#input\_cd\_trigger\_manual\_pruner\_enable) | Set to `true` to enable the manual Pruner trigger. | `bool` | `true` | no |
-| <a name="input_cd_trigger_manual_pruner_name"></a> [cd\_trigger\_manual\_pruner\_name](#input\_cd\_trigger\_manual\_pruner\_name) | The name of the manual Pruner trigger. | `string` | `"Evidence Pruner Manual Trigger"` | no |
 | <a name="input_cd_trigger_timed_cron_schedule"></a> [cd\_trigger\_timed\_cron\_schedule](#input\_cd\_trigger\_timed\_cron\_schedule) | Only needed for timer triggers. Cron expression that indicates when this trigger will activate. Maximum frequency is every 5 minutes. The string is based on UNIX crontab syntax: minute, hour, day of month, month, day of week. Example: 0 *\_/2 * * * - every 2 hours. | `string` | `"0 4 * * *"` | no |
 | <a name="input_cd_trigger_timed_enable"></a> [cd\_trigger\_timed\_enable](#input\_cd\_trigger\_timed\_enable) | Set to `true` to enable the CD pipeline Timed trigger. | `bool` | `false` | no |
 | <a name="input_cd_trigger_timed_name"></a> [cd\_trigger\_timed\_name](#input\_cd\_trigger\_timed\_name) | The name of the CD pipeline Timed trigger. | `string` | `"Git CD Timed Trigger"` | no |
-| <a name="input_cd_trigger_timed_pruner_enable"></a> [cd\_trigger\_timed\_pruner\_enable](#input\_cd\_trigger\_timed\_pruner\_enable) | Set to `true` to enable the timed Pruner trigger. | `bool` | `false` | no |
-| <a name="input_cd_trigger_timed_pruner_name"></a> [cd\_trigger\_timed\_pruner\_name](#input\_cd\_trigger\_timed\_pruner\_name) | The name of the timed Pruner trigger. | `string` | `"Evidence Pruner Timed Trigger"` | no |
 | <a name="input_change_management_existing_url"></a> [change\_management\_existing\_url](#input\_change\_management\_existing\_url) | The URL for an existing Change Management repository. | `string` | `""` | no |
 | <a name="input_change_management_repo_git_id"></a> [change\_management\_repo\_git\_id](#input\_change\_management\_repo\_git\_id) | Set this value to `github` for github.com, or to the ID of a custom GitHub Enterprise server. | `string` | `""` | no |
 | <a name="input_ci_app_group"></a> [ci\_app\_group](#input\_ci\_app\_group) | Specify the Git user or group for the application repository. | `string` | `""` | no |
@@ -465,15 +458,11 @@ statement instead the previous block.
 | <a name="input_ci_trigger_git_name"></a> [ci\_trigger\_git\_name](#input\_ci\_trigger\_git\_name) | The name of the CI pipeline GIT trigger. | `string` | `"Git CI Trigger"` | no |
 | <a name="input_ci_trigger_manual_enable"></a> [ci\_trigger\_manual\_enable](#input\_ci\_trigger\_manual\_enable) | Set to `true` to enable the CI pipeline Manual trigger. | `bool` | `true` | no |
 | <a name="input_ci_trigger_manual_name"></a> [ci\_trigger\_manual\_name](#input\_ci\_trigger\_manual\_name) | The name of the CI pipeline Manual trigger. | `string` | `"Manual Trigger"` | no |
-| <a name="input_ci_trigger_manual_pruner_enable"></a> [ci\_trigger\_manual\_pruner\_enable](#input\_ci\_trigger\_manual\_pruner\_enable) | Set to `true` to enable the manual Pruner trigger. | `bool` | `true` | no |
-| <a name="input_ci_trigger_manual_pruner_name"></a> [ci\_trigger\_manual\_pruner\_name](#input\_ci\_trigger\_manual\_pruner\_name) | The name of the manual Pruner trigger. | `string` | `"Evidence Pruner Manual Trigger"` | no |
 | <a name="input_ci_trigger_pr_git_enable"></a> [ci\_trigger\_pr\_git\_enable](#input\_ci\_trigger\_pr\_git\_enable) | Set to `true` to enable the PR pipeline Git trigger. | `bool` | `true` | no |
 | <a name="input_ci_trigger_pr_git_name"></a> [ci\_trigger\_pr\_git\_name](#input\_ci\_trigger\_pr\_git\_name) | The name of the PR pipeline GIT trigger. | `string` | `"Git PR Trigger"` | no |
 | <a name="input_ci_trigger_timed_cron_schedule"></a> [ci\_trigger\_timed\_cron\_schedule](#input\_ci\_trigger\_timed\_cron\_schedule) | Only needed for timer triggers. Cron expression that indicates when this trigger will activate. Maximum frequency is every 5 minutes. The string is based on UNIX crontab syntax: minute, hour, day of month, month, day of week. Example: 0 *\_/2 * * * - every 2 hours. | `string` | `"0 4 * * *"` | no |
 | <a name="input_ci_trigger_timed_enable"></a> [ci\_trigger\_timed\_enable](#input\_ci\_trigger\_timed\_enable) | Set to `true` to enable the CI pipeline Timed trigger. | `bool` | `false` | no |
 | <a name="input_ci_trigger_timed_name"></a> [ci\_trigger\_timed\_name](#input\_ci\_trigger\_timed\_name) | The name of the CI pipeline Timed trigger. | `string` | `"Git CI Timed Trigger"` | no |
-| <a name="input_ci_trigger_timed_pruner_enable"></a> [ci\_trigger\_timed\_pruner\_enable](#input\_ci\_trigger\_timed\_pruner\_enable) | Set to `true` to enable the timed Pruner trigger. | `bool` | `false` | no |
-| <a name="input_ci_trigger_timed_pruner_name"></a> [ci\_trigger\_timed\_pruner\_name](#input\_ci\_trigger\_timed\_pruner\_name) | The name of the timed Pruner trigger. | `string` | `"Evidence Pruner Timed Trigger"` | no |
 | <a name="input_cluster_name"></a> [cluster\_name](#input\_cluster\_name) | Name of the Kubernetes cluster where the application is deployed. This sets the same cluster name for both CI and CD toolchains. See `ci_cluster_name` and `cd_cluster_name` to set different cluster names. By default , the cluster namespace for CI will be set to `dev` and CD to `prod`. These can be changed using `ci_cluster_namespace` and `cd_cluster_namespace`. | `string` | `"mycluster-free"` | no |
 | <a name="input_code_engine_project"></a> [code\_engine\_project](#input\_code\_engine\_project) | The name of the Code Engine project to use. Created if it does not exist. Applies to both the CI and CD toolchains. To set individually use `ci_code_engine_project` and `cd_code_engine_project`. | `string` | `""` | no |
 | <a name="input_compliance_pipeline_branch"></a> [compliance\_pipeline\_branch](#input\_compliance\_pipeline\_branch) | The Compliance Pipeline definitions branch. See `ci_compliance_pipeline_branch`, `cd_compliance_pipeline_branch` and `cc_compliance_pipeline_branch` to set independently. | `string` | `"open-v10"` | no |
@@ -649,7 +638,7 @@ statement instead the previous block.
 | <a name="input_toolchain_resource_region_override"></a> [toolchain\_resource\_region\_override](#input\_toolchain\_resource\_region\_override) | IBM Cloud region for the created resources. If not set resources will be created in the region set in `toolchain_region`. | `string` | `""` | no |
 | <a name="input_use_app_repo_for_cd_deploy"></a> [use\_app\_repo\_for\_cd\_deploy](#input\_use\_app\_repo\_for\_cd\_deploy) | Set to `true` to use the CI sample application repository as the deployment repository in the CD pipeline. This will be set in the pipeline config integration. | `bool` | `false` | no |
 | <a name="input_use_legacy_cos_tool"></a> [use\_legacy\_cos\_tool](#input\_use\_legacy\_cos\_tool) | The custom tool integration is being replaced with the new COS tool integration. To continue using the legacy tool. Set the value to `true`. See `enable_cos` | `bool` | `false` | no |
-| <a name="input_use_legacy_ref"></a> [use\_legacy\_ref](#input\_use\_legacy\_ref) | Set to `true` to use the legacy secret reference format for Secrets Manager secrets. | `bool` | `true` | no |
+| <a name="input_use_legacy_ref"></a> [use\_legacy\_ref](#input\_use\_legacy\_ref) | Set to `true` to use the legacy secret reference format for Secrets Manager secrets. | `bool` | `false` | no |
 | <a name="input_worker_id"></a> [worker\_id](#input\_worker\_id) | The identifier for the pipeline worker. Applies to the CI, CD and CC pipelines. | `string` | `"public"` | no |
 
 ### Outputs
Original file line number	Diff line number	Diff line change
`@@ -3,7 +3,7 @@`
`3`	`3`	`"files": "go.sum\|^.secrets.baseline$",`
`4`	`4`	`"lines": null`
`5`	`5`	`},`
`6`		`- "generated_at": "2025-10-10T20:14:38Z",`
	`6`	`+ "generated_at": "2025-11-11T18:32:07Z",`
`7`	`7`	`"plugins_used": [`
`8`	`8`	`{`
`9`	`9`	`"name": "AWSKeyDetector"`