weekly.tf - Issue #91 - Alerts on manual actions, EKS IAM roles, PGP, ECS Fargate, terraform-diff, OSS Virus checks as a service
Benjamin Riou describes a way to get an alert for every manual modification made without Terraform on the AWS account - watch for User-Agent in the AWS CloudTail logs. Smart, isn't it?
Waleed published a set of Amazon EKS roles and policies written in Terraform. Ensure you have the least privilege model on your Amazon EKS clusters. AB: One of the best references about IAM in EKS.
Shekhar Jha wrote an article explores ways and provides scripts to secure the terraform artifacts in multi-cloud, multi-environment scenarios.
Always know where you need to run Terraform plan & apply! AB: A very handy tool for monorepo users of Terraform! I like that it relies on Git and terraform-config-inspect projects.
viruSaas - virus checks as a service that uses ClamAV antivirus. This repository's source code powers virusaas.com, including all Terraform configs.
Remember that sharing is caring, so it will help the Terraform community (and me) if you share this newsletter with your friends and colleagues.
PS: One of the best ways to help Ukraine - https://palianytsia.com.ua/
Glory to Ukraine! 🇺🇦