Jeremy Cooper [AFS MBP] 780e3d9967 Updates tfsec/chekov ignores \| S3 Enable Logging/Versioning		3 年之前
..
README.md	b0033b86e4 MSOCI-2063 codebuild for RPM building container images	3 年之前
accounts.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 年之前
constants.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 年之前
globals.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 年之前
iam.tf	baa1f43824 Applied `terraform fmt` to all modules	3 年之前
kms.tf	baa1f43824 Applied `terraform fmt` to all modules	3 年之前
outputs.tf	baa1f43824 Applied `terraform fmt` to all modules	3 年之前
repos.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 年之前
s3.tf	780e3d9967 Updates tfsec/chekov ignores \| S3 Enable Logging/Versioning	3 年之前
vars.tf	7a08ba10cf Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 年之前

CodeBuild ECR Base

This module is the building blocks for the AWS CodeBuild projects. It has the foundational pieces for using codebuild to build Linux software / RPMs. You may need to compile an RPM for a specific release of an OS, and CodeBuild by default only has Docker images for Amazon Linux 2 and Ubuntu. So part of this builds RHEL Docker images so that you can compile software in a RHEL userspace.

It builds these resources:

IAM role for Codebuild jobs to run and be launched by Eventbridge (codebuild-role)
S3 bucket for holding Codebuild artifacts (xdr-codebuild-artifacts)
ECR Repos for OS-specific containers
Codebuild jobs to docker build containers for the OS-specific containers
- RHEL 7
- RHEL 8
- RHEL 9 beta (not working right now)

The ECR repo and related codebuild jobs use a submodule. The OS-specific containers are rebuilt daily to keep them up to date with the latest RHEL patches.

README.md

CodeBuild ECR Base