Chapter 8: DevSecOps Using AWS Native Services
In this chapter, we will create a continuous integration/continuous deployment (CI/CD) pipeline for a microservice application. This pipeline will comprise all the native services of Amazon Web Services (AWS). In this pipeline, you will be learning all the small details that are required to set up a production-grade pipeline, with an example. We will create a pipeline by taking care of the security aspect of the application code using CodeGuru Reviewer, as well as a Docker image using an Elastic Container Registry (ECR) scan. We will use Parameter Store for storing secrets and will access it in the build stages. We will be using the AWS Developer toolchain for version control systems (VCS) and orchestration purposes. We will also test the resiliency of the application and underlying infrastructure using AWS Fault Injection Simulator (FIS) as part of the pipeline before we deploy it to production. In the end, we will configure the application...
