aws-cdk-examples
azure-policy
Our great sponsors
aws-cdk-examples | azure-policy | |
---|---|---|
36 | 9 | |
4,836 | 1,430 | |
2.2% | 2.0% | |
8.8 | 8.1 | |
4 days ago | 12 days ago | |
Python | Open Policy Agent | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
aws-cdk-examples
-
What are the best job-scheduling tools, frameworks or libraries?
If you are in aws, look at CDK there are modules that make this pretty easy https://github.com/aws-samples/aws-cdk-examples/blob/master/typescript/lambda-cron/index.ts
-
cdk deploy is failing with many errors
I am not sure where to post my CDK question. I am trying this project specifically https://github.com/aws-samples/aws-cdk-examples/tree/master/python/existing-vpc-new-ec2-ebs-userdata
- Is it feasible to store AWS Lambdas in a monorepo or do they all individually have to be strewn across the Github org?
- Need advice on potential data pipeline architecture (Airflow + AWS primarily)
- How do I deploy Python scripts in production?
-
Hiring managers! What cloud projects do you like to see from candidates?!
There are a ton of other example projects here for the AWS Cloud Development Kit: https://github.com/aws-samples/aws-cdk-examples Hope this helps, happy coding!
- Is there a way to schedule my python script to run everyday?
-
AWS CDK variable management question
I am looking at examples of the CDK in python for example https://github.com/aws-samples/aws-cdk-examples/blob/master/python/ec2/instance/app.py
-
What were the most difficult front-end interview questions that you ever recieved ?
The cdk exple repo is also invaluable. I prefer cdk to terraform because it's actual infrastructure as Code as opposed to templating language as Code. There is fear of vendor lock. But I saw a while back that even hashicorp is working on a cdk implementation
-
After 18 months... I am throwing up the white flag. But I still have a desire to learn more tech. What field can I learn more about without coding?
For example, an AWS CDK that describes an infrastructure might look like this: https://github.com/aws-samples/aws-cdk-examples/tree/master/typescript/api-cors-lambda-crud-dynamodb
azure-policy
- VMSS Azure Policy Compliance
-
Automation as key to cloud adoption success
Reference: https://github.com/Azure/azure-policy
-
Favorite cloud provider governance tips and tricks?
I just came across this post over in the Azure subreddit and it gave me a good idea on one way to deal with rogue Azure subscriptions - just have them default into a Management Group where a policy is in-place that basically denies use of any and all services.
-
How can we stop random users in our on-prem AD from creating new Azure subscriptions?
Oooo, that's a nice trick for the use of the root management group which usually has best practice to leave empty. I like that a lot! Could maybe pair that with the "deny all resource types" policy sample, and then even if someone does create a new subscription it's pretty much 100% neutered until someone pulls it out of the root management group and places it somewhere else.
-
Architecture on Decommission huge list of old Azure servers
Found a 2018 Github article - https://github.com/Azure/azure-policy/issues/102
-
Public assets
MS Repo https://github.com/Azure/azure-policy/tree/master/built-in-policies/policyDefinitions
-
How can I resolve this Security center recommendation: "Replace a process level token"
I can see here that is expecting azure-policy/AzureWindowsBaseline.mof at master · Azure/azure-policy · GitHub: "LOCAL SERVICE, NETWORK SERVICE". However, that would exclude the web app pools.
-
Iron Dome = 'Security Policies' at scale for your Multi-Cloud accounts
Azure shared with us a GitHub repository contains built-in samples of Azure Policies that can be used as reference for creating and assigning policies to your subscriptions and resource groups.
-
Compliance with policy or blueprints?
The only real way you'll be able to do this is via an Azure Policy, alongside a deny effect - where your policy would restrict based on the type field, with the values passed in via an array parameter (example)
What are some alternatives?
lambda-cron
OPA (Open Policy Agent) - Open Policy Agent (OPA) is an open source, general-purpose policy engine.
aws-cloudformation-coverage-roadmap - The AWS CloudFormation Public Coverage Roadmap
shellharden - The corrective bash syntax highlighter
aws-cdk-multi-region-dynamodb-global-tables
balanced-employee-ip-agreement - GitHub's employee intellectual property agreement, open sourced and reusable
sidekiq - Sidekiq worker on Render
opal - Fork of https://github.com/permitio/opal
terraform-ecs - AWS ECS terraform module
Community-Policy - This repo is for Microsoft Azure customers and Microsoft teams to collaborate in making custom policies.
AKS - Azure Kubernetes Service
Certified-Kubernetes-Security-Specialist - Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.