Skip to content

Add InfraMorph CI/CD Configuration #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
Herenn wants to merge 34 commits into from
Closed

Add InfraMorph CI/CD Configuration #2

Herenn wants to merge 34 commits into from

Conversation

@Herenn
Copy link
Owner

@Herenn Herenn commented Sep 1, 2025

InfraMorph CI/CD Configuration

This PR adds a complete CI/CD pipeline configuration for Infrastructure as Code with the following features:

🚀 What's Added

  • Terraform Structure: Modular terraform layout with environment separation
  • Remote Backend: Configured for aws backend
  • CI/CD Pipeline: GitHub Actions workflow for terraform plan/apply
  • OPA/Conftest Policies: Security and compliance policy checks
  • Policy Exceptions: Configurable exception handling

📁 Structure

terraform/
├── modules/        # Reusable terraform modules
├── envs/          # Environment-specific configurations
│   ├── dev/
│   ├── stage/
│   └── prod/
policies/           # OPA/Conftest security policies
scripts/           # Helper scripts for CI/CD
.inframorph-policy.yaml  # Policy configuration
.github/workflows/ # GitHub Actions pipeline

🔒 Security Features

  • Policy checks run on every PR
  • Manual approval required for production deployments
  • Secrets management via GitHub Actions secrets
  • Principle of least privilege for cloud credentials

🔧 Next Steps

  1. Configure repository secrets for cloud provider credentials
  2. Review and customize the generated policies
  3. Merge this PR to enable the CI/CD pipeline

Generated by InfraMorph at 2025-09-01T20:21:55.817456

Herenn added 30 commits September 1, 2025 23:21
@Herenn
Add terraform/envs/dev/backend.tf
dc93080
@Herenn
Add terraform/envs/dev/providers.tf
9bc55bd
@Herenn
Add terraform/envs/dev/main.tf
1a7ad8d
@Herenn
Add terraform/envs/dev/variables.tf
8cffc7b
@Herenn
Add terraform/envs/dev/outputs.tf
b85e311
@Herenn
Add terraform/envs/stage/backend.tf
7c0144f
@Herenn
Add terraform/envs/stage/providers.tf
d312dbb
@Herenn
Add terraform/envs/stage/main.tf
15584f9
@Herenn
Add terraform/envs/stage/variables.tf
e1acdbc
@Herenn
Add terraform/envs/stage/outputs.tf
bcd8a3a
@Herenn
Add terraform/envs/prod/backend.tf
536c4d4
@Herenn
Add terraform/envs/prod/providers.tf
68572c4
@Herenn
Add terraform/envs/prod/main.tf
dc23c0d
@Herenn
Add terraform/envs/prod/variables.tf
b95f9e9
@Herenn
Add terraform/envs/prod/outputs.tf
2a79f4e
@Herenn
Add terraform/modules/network/main.tf
2eac7b3
@Herenn
Add terraform/modules/network/variables.tf
2e525fa
@Herenn
Add terraform/modules/network/outputs.tf
de5d0e7
@Herenn
Add terraform/modules/compute/main.tf
bc2d897
@Herenn
Add terraform/modules/compute/variables.tf
b90d353
@Herenn
Add terraform/modules/compute/outputs.tf
c885c6c
@Herenn
Add terraform/modules/database/main.tf
c3c70ff
@Herenn
Add terraform/modules/database/variables.tf
71f2b5b
@Herenn
Add terraform/modules/database/outputs.tf
81ae5e1
@Herenn
Add policies/aws/security.rego
e9580c7
@Herenn
Add policies/aws/compliance.rego
f994697
@Herenn
Add policy-lib/terraform.rego
92201b2
@Herenn
Add policy-lib/utils.rego
bd6c359
@Herenn
Add .inframorph-policy.yaml
d8a45eb
@Herenn
Add scripts/export_tfplan_json.sh
934843d
@Herenn Herenn closed this Sep 1, 2025
@Herenn Herenn deleted the inframorph-cicd-20250901-202124 branch September 1, 2025 20:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Herenn