GSA DevSecOps

GSA DevSecOps Information

This repo contains information related to DevSecOps at GSA. The code that has been previously located in this project has been split out into different locations. This repo will now only contain documentation and links to relevant DevSecOps information.

The plaform is called the GSA Readily Available Computing Environment (GRACE). Named in honor of Rear Admiral Grace Hopper.

GRACE implements 1 AWS subaccount per VPC, per environment, per app:

1-1-1-1: 1 AWS account == 1 Environment == 1 VPC == 1 application

You may wish to consult the following example repos for ideas or templates to implement GRACE.

Public

Repository	Build Status
GSA/ansible-activclient
GSA/ansible-bigfix
GSA/ansible-bit9
GSA/ansible-cloudwatch
GSA/ansible-cylance
GSA/ansible-fireeye
GSA/ansible-firstboot
GSA/ansible-forescout
GSA/ansible-nessus
GSA/ansible-snare
GSA/ansible-solarwinds
GSA/ansible-vrealize_orchestrator
GSA/cloudwatch-ansible-callback-plugin
GSA/github-copy
GSA/grace-alerting
GSA/grace-ansible-batch
GSA/grace-ansible-lambda
GSA/grace-ansible-template
GSA/grace-app
GSA/grace-circleci-builder
GSA/grace-citest
GSA/grace-cloudcustodian
GSA/grace-config
GSA/grace-config-differ
GSA/grace-decider
GSA/grace-ecr
GSA/grace-fcs-network
GSA/grace-iam
GSA/grace-inventory
GSA/grace-log-parser
GSA/grace-logging
GSA/grace-paas-backup
GSA/grace-paas-elb
GSA/grace-paas-network
GSA/grace-paas-rds
GSA/grace-rotate-accesskeys
GSA/grace-secrets-sync-lambda
GSA/grace-securityhub
GSA/grace-style-guide
GSA/grace-template
GSA/grace-tftest

Private

Repository	Build Status
GSA/cabgsa
GSA/idto-sandbox
GSA/g-grace
GSA/grace-actions
GSA/grace-build
GSA/grace-core
GSA/grace-customer
GSA/grace-guardrails
GSA/grace-inventory-tests
GSA/grace-paas-baseline
GSA/grace-paas-iam
GSA/grace-repos
GSA/grace-ssp
GSA/IDT-BigFix
GSA/idt-hybrid-ansible
GSA/idt-hybrid-vra
GSA/idt-hybrid-vro
GSA/tgw-core

Deprecated

Repository	Build Status
GSA/ansible-role-fireeyehx
GSA/aws-account-broker
GSA/ansible-fluentd
GSA/devsecops-cloud-custodian-rules
GSA/devsecops-ebs-backup
GSA/devsecops-ekk-stack
GSA/devsecops-example
GSA/devsecops-iam-roles
GSA/devsecops-log-forwarding
GSA/devsecops-subaccount-admin
GSA/grace-account-lockout
GSA/grace-example
GSA/grace-rhel-ami
GSA/grace-sqs-poc
GSA/grace-tenant-cleanup
GSA/grace-tf-module-budget
GSA/grace-tf-module-member-account
GSA/grace-ubuntu-ami
GSA/security-benchmarks