Using AWS for GitHub Actions and various security features available through AWS Container Services like Amazon ECS, AWS Fargate, and Amazon ECR, this repository demonstrates an automated build and deploy pipeline using GitHub Actions from application code to deploying an ECS service using Fargate. In the process, it also uses AWS KMS integration with ECR and ECR on-push scanning features to demonstrate security integration at various stages of an automated build process to help deploy security and compliance controls.

JavaScriptApache-2.0

`Container Application Security - CI/CD Pipeline using AWS for GitHub Actions`

Add the GH secrets for the github action

Using the aws-credentials Github action we will authenticate to our AWS account. To do this we have a few options.

Go to Settings > Secrets and add the keys for the GH actions ECR action.

Initialize the ECR repo and Log group

Make sure you have envsubst installed.

make install

make create-ecr 
make loggroup 
make env 
make task

one at a time.

Make a new commit to the Repo

If you want to change the badges, then replace jonahjon with your GH username in the readme badges

jonahjon/container-app-security-cicd

Container Application Security - CI/CD Pipeline using AWS for GitHub Actions

Add the GH secrets for the github action

Initialize the ECR repo and Log group

Make a new commit to the Repo

`Container Application Security - CI/CD Pipeline using AWS for GitHub Actions`