Step Module Reference

Reference documentation for Refactr step modules, which are the basic building blocks of pipelines.

Accurics Terrascan

Terrascan detects security vulnerabilities and compliance violations across your Infrastructure as Code.

Ansible Playbook

Executes a Red Hat Ansible playbook.

Aqua Security Trivy

Trivy is a simple and comprehensive vulnerability scanner for containers and other artifacts.


Stops pipeline execution with Failed status if the assertion expression evaluates to false.

AWS CloudFormation Template

Creates a stack from a CloudFormation template on Amazon Web Services (AWS).

Azure Resource Group

Creates or deletes a Resource Group on Microsoft Azure.

Azure Resource Manager (ARM) Template

Deploys an Azure Resource Manager template to Microsoft Azure.


Executes the Bridgecrew Checkov IaC static code analysis tool. Checkov can scan Terraform, CloudFormation, Kubernetes, and other IaC files for security vulnerabilities and misconfigurations.

CIS-CAT Assessor

Compares the configuration of a target system to CIS Benchmark recommendations and reports conformance on a scale of 0-100

Conditional Gate

Skips execution of all child steps of this step, according to a condition.


Creates a credential dynamically within a pipeline run. This module is useful for importing credentials from external systems, such as key stores, vaults, and CMDBs.

Debug Message

Prints a message to the pipeline run events. Useful for debugging variable values during execution.

GCP Deployment Manager Template

Deploys resources to Google Cloud Platform using Deployment Manager templates.

Git Clone

Clones a git repository onto the runner.

Golang Executor

Executes a Go program.

HashiCorp Terraform

Operates on a Terraform project. Can validate, plan, and apply Terraform configurations.

HashiCorp Vault Credential

Vault secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Vault handles leasing, key revocation, key rolling, auditing, and provides secrets as a service through a unified API.


Sends an HTTP request.

Install AWS CLI

Installs the AWS CLI executable on the runner.

Install Azure CLI

Installs the Azure CLI executable on the runner.

Install Checkov

Installs the Bridgecrew Checkov CLI on the runner.

Install gcloud CLI

Installs the Google gcloud executable on the runner.

Install Go

Installs the Golang runtime on the runner.

Install HashiCorp Terraform

Installs the HashiCorp Terraform executable on the runner.

Install HashiCorp Vault

Installs the HashiCorp Vault executable on the runner.

Install kubectl

Installs the Kubernetes kubectl executable on the runner.

Install Node.js

Installs the Node.js executable on the runner.

Install PowerShell

Installs the PowerShell executable on the runner.

Install Python

Installs the Python executable on the runner.

Install Red Hat Ansible

Installs Red Hat Ansible on the runner.

Install Terrascan

Installs Terrascan on the runner.

Install Trivy

Installs Trivy on the runner.

Install ZAProxy

Installs the ZAProxy CLI on the runner.

Kubernetes (kubectl)

Modify resources on a Kubernetes cluster using the kubectl CLI.

Node.js Script

Executes a Node.js script.

OpenSCAP Scanner

OpenSCAP is a command line utility for working with the Security Content Automation Protocol (SCAP).


Pauses pipeline execution for a specified duration.

PowerShell Script

Executes a PowerShell script.

Python Script

Executes a Python script.

Set Variables

Adds a set of variables to the current vars context.

Shell Script

Executes a shell script.

Write File

Writes content to a file on the run agent.