ghndrx/terraform-foundation
1
0
Fork 0
mirror of https://github.com/ghndrx/terraform-foundation.git synced 2026-02-10 06:45:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

feat: Terraform Foundation - AWS Landing Zone

Browse Source 
Enterprise-grade multi-tenant AWS cloud foundation.

Modules:
- GitHub OIDC for keyless CI/CD authentication
- IAM account settings and security baseline
- AWS Config Rules for compliance
- ABAC (Attribute-Based Access Control)
- SCPs (Service Control Policies)

Features:
- Multi-account architecture
- Cost optimization patterns
- Security best practices
- Comprehensive documentation

Tech: Terraform, AWS Organizations, IAM Identity Center
This commit is contained in:
Greg Hendrickson
2026-02-01 20:06:28 +00:00
commit 6136cde9bb
145 changed files with 30832 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
.trivy.yaml Normal file
View File

@@ -0,0 +1,37 @@
# Trivy Configuration
# Security and misconfiguration scanning
# https://aquasecurity.github.io/trivy/
# Scan severity levels
severity:
- CRITICAL
- HIGH
- MEDIUM
# Exit code (0 = warn only, 1 = fail on findings)
exit-code: 0
# Output format
format: table
# Ignore unfixed vulnerabilities
ignore-unfixed: true
# Skip directories
skip-dirs:
- .terraform
- .git
- node_modules
# Custom policy paths
# policy:
# - ./policies
# Misconfiguration scanning
misconfiguration:
# Terraform-specific checks
terraform:
exclude-downloaded-modules: true
# Ignore specific checks
ignorefile: .trivyignore