CloudFormation Template Highlights

• This template produces an AWS CodePipeline
• The pipeline deploys an AutoScalingGroup of EC2 t2.micro instances
• The pipeline uses a GitHub repo as the source
• Any changes to the repo will be deployed to the EC2 instances
• The template also creates the IAM policy for the Source Reports checker
• The inputs required for the Source Reports checker will be listed as Cloudformation outputs once you build the template

Takeaways

• In order to provide verifiable open source or continuous audit services, these IAM permissions must be provided
• The checker requires one of the listed EC2 AMIs to be selected
• The checker requires the EC2 userdata to be as defined in the template
• The checker requires the https listener to be as defined in the template
• The checker requires the secondary URL to redirect to the primary URL via an S3 bucket
• Need help? Please email us.

Template