Giters

co-cddo / gc3-vuln-reporting-iac

Government Cyber Coordination Centre - Vulnerability Reporting Service - Infrastructure as Code

Home Page:https://vulnerability-reporting.service.security.gov.uk/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

securitytxtsecurity-researchersawscyber-securityterraformukgovernmentsecurityvulnerability-reports

gc3-vuln-reporting-iac

Government Cyber Coordination Centre - Vulnerability Reporting - Infrastructure as Code

AWS Terraform Version v1.0.11 Last commit image

Infrastructure as code (Terraform) for VRS running on AWS.

security.txt

The security.txt file is generated from security.txt.tmpl and takes variables from cdn/s3.tf - it is updated on every change and deploy or every Wednesday at 9am.

Acknowledgements

Acknowledgements can be added in the cdn/variables.tf file.

Infrastructure

CloudFront CDN

cdn is for CloudFront where S3 is the backend origin, Functions are used to handle traffic dynamically and in a scalable way.

The router JavaScript function has several endpoints.

The router function has a test suite that can be ran by doing:

cd cdn/functions/router/
npm install
npm test

Route53 DNS

dns is the management of the Route53 zone and records.

Utilises the aws-route53-parked-govuk-domain Terraform module for parking the email records.

About

Government Cyber Coordination Centre - Vulnerability Reporting Service - Infrastructure as Code

https://vulnerability-reporting.service.security.gov.uk/

securitytxtsecurity-researchersawscyber-securityterraformukgovernmentsecurityvulnerability-reports

License:MIT License

Languages

Language:HCL 63.4%Language:JavaScript 27.8%Language:CSS 5.1%Language:Python 3.7%