Beruflich Dokumente
Kultur Dokumente
Secure Serverless
CI/CD with Codeship,
PureSec, and
AWS Lambda
-2-
Share this
Codeship Guid
e
-3-
Share this
Codeship Guid
e
-4-
Share this
Codeship Guid
e
-5-
Share this
Codeship Guid
e
-6-
Share this
Codeship Guid
e
-7-
Share this
Codeship Guid
e
-8-
Share this
Codeship Guid
e
pypi/simple -t .
6 cd ../
7 pip3 install puresec-cli-enterprise --extra-index-url=https://********.puresec.
io/************************/puresec-cli-enterprise/python
8 pyenv local 3.6
9 puresec test-roles --fail-findings 1
10 serverless deploy
-9-
Share this
Codeship Guid
e
- 10 -
Share this
Codeship Guid
e
- 11 -
Share this
Codeship Guid
e
- 12 -
Share this
Codeship Guid
e
- 13 -
Share this
Codeship Guid
e
Here's how the final steps of the test pipeline look in the
dashboard:
1 - Effect: Allow
2 Action:
CODE
3 - "s3:PutObject"
4 Resource: "arn:aws:s3:*"
- 14 -
Share this
Codeship Guid
e
- 15 -
Share this
Codeship Guid
e
Now, let's deploy our function with the proper IAM roles
and permissions. However, we will "forget" to include the
PureSec runtime protection library as a dependency, and
see what happens to our build.
- 16 -
Share this
Codeship Guid
e
- 17 -
Share this
Codeship Guid
e
- 18 -
Share this
Codeship Guid
e
Summary
- 19 -
Share this
Codeship Guid
e
- 20 -
Share this
Codeship Guid
e
About Codeship.
Codeship is a hosted Continuous Integration service that fits all your needs.
Codeship Basic provides pre-installed dependencies and a simple setup UI
that let you incorporate CI and CD in only minutes. Codeship Pro has native
Docker support and gives you full control of your CI and CD setup while
providing the convenience of a hosted solution.