Snyk can help you find and fix vulnerabilities in container images. In this video , we are going to explore this with in-depth intuition & practical implementation.
Prerequisite:
---------------------
Enhancing Code Security 🔒 : Integrate Snyk with GitHub Actions
• Enhancing Code Securit...
🐳 Automating Docker Image Build, Push to AWS ECR, and AWS Lambda Deployment via GitHub Actions🔄
• 🐳 Automating Docker Im...
🔁Automate Deployment to AWS with GitHub Actions | From Zero to Hero in 85 minutes
• 🔁Automate Deployment t...
Code:
----------
name: ecr_docker_deployment
on: [push]
jobs:
docker_cicd:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id:
aws-secret-access-key:
aws-region: us-east-1
- name: Login to Amazon ECR
id: login-ecr
uses: aws-actions/amazon-ecr-login@v2
- name: Build the Docker Image
env:
REGISTRY: ${{ steps.login-ecr.outputs.registry }}
REPOSITORY: demoytcicdgithubaction
IMAGE_TAG: ${{ github.sha }}
run: |
docker build -t $REGISTRY/$REPOSITORY:$IMAGE_TAG .
- name: Run Snyk to check Docker image for vulnerabilities
uses: snyk/actions/docker@master
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
REGISTRY: ${{ steps.login-ecr.outputs.registry }}
REPOSITORY: demoytcicdgithubaction
IMAGE_TAG: ${{ github.sha }}
with:
image: $REGISTRY/$REPOSITORY:$IMAGE_TAG
args: --severity-threshold=high
- name: Push in ECR & Update Lambda Function
env:
REGISTRY: ${{ steps.login-ecr.outputs.registry }}
REPOSITORY: demoytcicdgithubaction
IMAGE_TAG: ${{ github.sha }}
run: |
docker push $REGISTRY/$REPOSITORY:$IMAGE_TAG
aws lambda update-function-code \
--function-name demoytcicdecrtest \
--image-uri $REGISTRY/$REPOSITORY:$IMAGE_TAG
Check this playlist for more Data Engineering related videos:
• Demystifying Data Engi...
Apache Kafka form scratch
• Apache Kafka for Pytho...
Messaging Made Easy: AWS SQS Playlist
• Messaging Made Easy: A...
Snowflake Complete Course from scratch with End-to-End Project with in-depth explanation--
doc.clickup.co...
Explore our vlog channel:
www.youtube.co...
Your Queries -
=============
Build and run your applications securely on AWS
Snyk Developer-First Security on AWS
Snyk Container-specific CI/CD strategies
Snyk Vulnerability Scan to secure Container Image
Secure Your Container Workloads in Build Time with Snyk and AWS
Tips and best practices for building secure container images
Container Security in AWS
Designing a secure container image registry
Build Secure Containers with Docker and Snyk
Snyk + AWS, Better together
AWS Modernization with Snyk
Docker Image Scanning with Snyk and Github Actions
🙏🙏🙏🙏🙏🙏🙏🙏
YOU JUST NEED TO DO
3 THINGS to support my channel
LIKE
SHARE
&
SUBSCRIBE
TO MY RU-vid CHANNEL
#snyk #security #awssecurity #docker #container #githubactions #github
13 сен 2024