terraform-security-scan
s3-sync-action
terraform-security-scan | s3-sync-action | |
---|---|---|
1 | 7 | |
110 | 1,006 | |
- | - | |
4.6 | 0.0 | |
8 months ago | about 1 month ago | |
Shell | Shell | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
terraform-security-scan
-
tfsec vs chekhov vs terrascan - What do pople recommend?
While I think the major problem is how the https://github.com/triat/terraform-security-scan action works in that it compiles tfsec from scratch on each run. There is a major issue to me with how the tfsec team manages their project it seems like instead of releasing new versions of their tool they will go back and retag new code. This has introduced issues where the tfsec will just randomly fail one day because of a bug, we've had it happen about 3 times in the last four months.
s3-sync-action
-
Bringing together Hungarian technology conferences
I cannot ignore the fact that I am an AWS Community Builder, so it was a no-brainer that I would implement this on AWS. Registering a domain and setting it up on Route 53 was the first step. Then I looked at the possibilities of hosting. The site is written in Jeklly and each page is generated separately. Using GitHub Actions, I can regenerate the static pages every time there is a new commit. Hosting a static website on AWS isnβt rocket science. S3 static file hosting is a cheap and easy way. I just needed to find a way how to publish my files to S3. Jake Jarvis created a GitHub Action that can sync your files to S3. All you have to do is to create the appropriate IAM permissions and your files will be pushed to the S3 bucket of your choice. From there, AWS will do the rest. I have created a CloudFront distribution to get HTTPS and fast access from Hungary. Currently there is no AWS region in Hungary, but there is an edge location in Budapest, so serving the site from there gives fast access to Hungarian users. π₯π₯π₯
- Cheap way to host a Javascript project. (e.g. Node APIs & React Apps)
-
request critical feedback on the yaml for my first github action, please
I mean.. I would probably just have used https://github.com/marketplace/actions/s3-sync :)
-
Nestjs + Nextjs Monorepo with AWS
I would consider sending the UI build files to S3 using either cloud formation or Github Actions. For the backend, sounds like a docker container could serve you well and cloudformation or Github Actions can handle this.
-
CI/CD failing for permission... anybody can help me?
The action in GitHub is the following (as per instructions here : https://github.com/jakejarvis/s3-sync-action )
-
How do you implement your Front-end build & deploy process?
You can deploy your frontend build to S3, then point your domain to these files, for example with CloudFlare or Route53. We use a Github action to publish these for each deploy. This makes the frontend and backend effectively two different services.
-
15. CI/CD (Front end)
Git hub actions pushes the source code to my S3 bucket the moment they are pushed to my git repository using a git actions. Git action: https://github.com/jakejarvis/s3-sync-action
What are some alternatives?
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
git-repo-sync - Git Repo Sync enables you to synchronize code to other code management platforms, such as GitLab, Gitee, etc.
tfsec - Security scanner for your Terraform code
build-hugo - A GitHub Action to build Hugo site.
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
git-repo-sync - Auto synchronization of remote Git repositories. Auto conflict solving. Network fail resilience. Linux & Windows support. And more.
aws-grafana-billing-dashboard - A Grafana dashboard for AWS billing metrics which is deployable via Terraform or cdktf
terraform-multienv - A template for maintaining a multiple environments infrastructure with Terraform. This template includes a CI/CD process, that applies the infrastructure in an AWS account.
super-linter - Combination of multiple linters to install as a GitHub Action
jekyll-action - A GitHub Action to publish Jekyll based content as a GitHub Pages site
tfsec - Security scanner for your Terraform code [Moved to: https://github.com/aquasecurity/tfsec]
amplify-preview-actions - This action deploys your AWS Amplify pull request preview for your public repository