jonesy1234

---
name: 'Terraform GitHub Plan Shared Action'

# yamllint disable-line rule:truthy
on:
  workflow_call:
    inputs:
      aws_region:
        description: 'The target AWS Region for access to S3 & DynamoDB'
        required: true

jonesy1234

---
name: Terraform Plan

# yamllint disable-line rule:truthy
on:
  pull_request:
    branches: [master, main]

  workflow_dispatch:

jonesy1234

{
  "detail-type": ["workflow_job"]
}

jonesy1234

AWSTemplateFormatVersion: "2010-09-09"
Transform: AWS::Serverless-2016-10-31
Description: >
  github-webhook

  Amazon EventBridge Inbound webhooks using lambda fURLs CFN Template.

Parameters:
  GithubWebhookSecret:
    Type: String

jonesy1234

CREATE EXTERNAL TABLE IF NOT EXISTS `twgflowlogs`.`awslogs` (
  version int, 
  resource_type string, 
  account_id string, 
  tgw_id string, 
  tgw_attachment_id string, 
  tgw_src_vpc_account_id string, 
  tgw_dst_vpc_account_id string, 
  tgw_src_vpc_id string, 
  tgw_dst_vpc_id string, 

jonesy1234

 Type: AWS::IAM::ManagedPolicy
Properties:
  Description: 'IAM Roles for Terraform State Resources'
  PolicyDocument:
    Version: '2012-10-17'
    Statement:
      - Effect: Allow
        Action:
          - dynamodb:GetItem
          - dynamodb:PutItem

jonesy1234

---

AWSTemplateFormatVersion: 2010-09-09
Description: GitHub Actions AWS Authentication with OIDC for GitHub Enterprise

Parameters:
  GithubOrg: # can also be a regular user
    Type: String
    Default: mygithuborg
  FullRepoName:

jonesy1234

#!/usr/bin/env python

from diagrams import Cluster, Diagram
from diagrams.aws.network import Route53
from diagrams.aws.management import Cloudwatch, SSM, Cloudtrail, Config
from diagrams.aws.analytics import Analytics
from diagrams.aws.security import Detective, Guardduty, IAMAccessAnalyzer, SecurityHub, Inspector
from diagrams.aws.integration import Eventbridge

with Diagram("AWS Security Services Data Flow", show=False, direction="TB"):