Greg Hendrickson
|
a4e07796b8
|
feat(feature-flags): centralized tenant-wide feature toggles
Add feature-flags module for organization-wide security controls:
- Environment presets (production/staging/development)
- Security toggles (GuardDuty, Security Hub, Config, CloudTrail)
- Compliance toggles (CIS, PCI, HIPAA, NIST, SOC2)
- IAM toggles (password policy, MFA enforcement)
- Alerting toggles (severity routing, thresholds)
- Cost management toggles (budgets, thresholds)
- Networking toggles (VPC, endpoints, NAT)
- Backup toggles (schedules, retention)
All features are OPT-IN by default. User input overrides presets.
Includes example wiring into security-baseline and alerting modules.
|
2026-02-03 20:03:09 +00:00 |
|
|
|
6136cde9bb
|
feat: Terraform Foundation - AWS Landing Zone
Enterprise-grade multi-tenant AWS cloud foundation.
Modules:
- GitHub OIDC for keyless CI/CD authentication
- IAM account settings and security baseline
- AWS Config Rules for compliance
- ABAC (Attribute-Based Access Control)
- SCPs (Service Control Policies)
Features:
- Multi-account architecture
- Cost optimization patterns
- Security best practices
- Comprehensive documentation
Tech: Terraform, AWS Organizations, IAM Identity Center
|
2026-02-02 02:57:23 +00:00 |
|
