gc3-vuln-reporting-iac

Government Cyber Coordination Centre - Vulnerability Reporting - Infrastructure as Code

Infrastructure as code (Terraform) for VRS running on AWS.

Pre-production/staging: https://vulnerability-reporting.nonprod-service.security.gov.uk
Production: https://vulnerability-reporting.service.security.gov.uk

security.txt

The security.txt file is generated from security.txt.tmpl and takes variables from cdn/s3.tf - it is updated on every change and deploy or every Wednesday at 9am.

Acknowledgements

Acknowledgements can be added in the cdn/variables.tf file.

Infrastructure

CloudFront CDN

cdn is for CloudFront where S3 is the backend origin, Functions are used to handle traffic dynamically and in a scalable way.

The router JavaScript function has several endpoints.

The router function has a test suite that can be ran by doing:

cd cdn/functions/router/
npm install
npm test

Route53 DNS

dns is the management of the Route53 zone and records.

Utilises the aws-route53-parked-govuk-domain Terraform module for parking the email records.

Name		Name	Last commit message	Last commit date
Latest commit History 90 Commits
.github/workflows		.github/workflows
cdn		cdn
dns		dns
.gitignore		.gitignore
.terraform-version		.terraform-version
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

gc3-vuln-reporting-iac

security.txt

Acknowledgements

Infrastructure

CloudFront CDN

Route53 DNS

About

Contributors 2

Languages

License

co-cddo/gc3-vuln-reporting-iac

Folders and files

Latest commit

History

Repository files navigation

gc3-vuln-reporting-iac

security.txt

Acknowledgements

Infrastructure

CloudFront CDN

Route53 DNS

About

Topics

Resources

License

Security policy

Stars

Watchers

Forks

Contributors 2

Languages