Skip to content

devantler-tech/aws

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
 
 
 
 
 
 
 
 
 
 
 
 

aws

Declarative AWS infrastructure for devantler-tech, managed as Crossplane managed resources and delivered GitOps-style.

How it works

  • deploy/ holds the desired AWS state as Crossplane managed resources (provider-aws family). Manifests are namespace-agnostic — the platform injects the target namespace.
  • Releases publish deploy/ as a cosign-signed OCI manifests artifact at oci://ghcr.io/devantler-tech/aws/manifests (see .github/workflows/cd.yaml).
  • The platform consumes the artifact via the aws tenant (Flux OCIRepository + Kustomization with cosign verification), and the in-cluster AWS Crossplane provider reconciles the resources against AWS.

Authentication (namespace, SecretStore, bootstrap-credential ExternalSecret, and the ProviderConfig) is provisioned platform-side — see platform#2325.

Contributing

Changes go through pull requests; CI validates that deploy/ renders with kubectl kustomize. Merges to main release automatically via semantic-release (Conventional Commit titles decide the version).

About

Declarative AWS infrastructure for the devantler-tech platform — Crossplane managed resources in deploy/, published as a cosign-signed OCI artifact and reconciled by the platform's aws tenant.

Resources

License

Code of conduct

Contributing

Security policy

Stars

Watchers

Forks

Packages

 
 
 

Contributors