Terraform Enterprise analytics tracking

Introduction

For security purposes, some companies have requirements that do not allow applications running on their network to send outbound analytics. This is usually in efforts to prevent unapproved data leaving their network without their knowledge.

Information

Terraform Enterprises currently shares a codebase with Terraform Cloud which does have some analytics tracking in place. However, Terraform Enterprise does not collect any analytics, as the analytics tracking is disabled for Terraform Enterprise.

Outcome

Some network analytics engines might show the following endpoint within their scan results. https://cdn.segment.com/analytics.js/v1/segment-dev/analytics.min.js

The endpoint in question exists because Terraform Enterprise shares a codebase with Terraform Cloud, which does utilize Segment analytics. This is loaded in Terraform Enterprise due to the fact that the settings for all this are set at build-time, not run-time, so we can't toggle it off for Terraform Enterprise at that point. This endpoint is set to 404 automatically, there is no data sent to segment.io and there is no ID for it to utilize, but we do load that file.