Skip to content
/ lambda-compliance Public

This repository contains a collection of useful solutions for automation within an AWS account.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dcy2003/lambda-compliance

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits

s3

s3

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

Repository files navigation

This repository contains a collection of useful solutions for automation within an AWS account.

[Navigate to subdirectories for more detailed READMEs]

Repository currently includes:

  • s3/ensure-logging-enabled
    • ensures audit logging is enabled on newly created S3 buckets
    • uses AWS Lambda and CloudWatch events
    • easily deployable using Serverless Framework
  • s3/ensure-versioning-enabled
    • ensures versioning is enabled on newly created S3 buckets
    • uses AWS Lambda and CloudWatch events
    • easily deployable using Serverless Framework
  • s3/recursive-bucket-scanner
    • Node.js utility to recursively scan an S3 bucket and print list of globally accessible objects

Future ideas:

  • Lambda function to notify of globally accessible S3 buckets in account
  • Lambda function to notify when an AWS Config rule enters noncompliant state
  • Lambda function to serve as a cron health check for a REST service
  • Lambda functions to ensure EC2 compliance:
    • presence of tag (e.g. POC)
    • approved AMI
    • approved instance type

Development

Want to contribute? Great! Submit a pull request.

License

MIT

About

This repository contains a collection of useful solutions for automation within an AWS account.

Topics

nodejs aws lambda aws-lambda serverless serverless-framework serverless-architectures cloudwatch-events

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages