From 8099d86b9ba80c9c2dc6778fa567fbab5cc7ad77 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:30:34 -0500 Subject: [PATCH 1/6] Add Dockerfile --- Dockerfile | 12 ++++++++++++ 1 file changed, 12 insertions(+) create mode 100644 Dockerfile diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..fb1bbf1 --- /dev/null +++ b/Dockerfile @@ -0,0 +1,12 @@ +FROM python:3.8-alpine + +RUN addgroup -S mobius3 && \ + adduser -S mobius3 -G mobius3 && \ + mkdir ~mobius3/data && \ + chown mobius3:mobius3 ~mobius3/data +WORKDIR /home/mobius3 + +RUN pip install mobius3==0.0.34 + +USER mobius3 + From e03147abd25db933b627fd6ed119515ecd893b53 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:35:17 -0500 Subject: [PATCH 2/6] Update default location of mobius3 container --- variables.tf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/variables.tf b/variables.tf index 21350d8..df8fb50 100644 --- a/variables.tf +++ b/variables.tf @@ -29,7 +29,7 @@ variable "awscli_image" { variable "mobius3_image" { description = "The Mobius3 Image for S3<->FS synchronization" type = string - default = "quay.io/uktrade/mobius3:v0.0.32" + default = "ghcr.io/zeroae/terraform-aws-mobius3:0.0.34" } # https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_LogConfiguration.html From 84b6d08fae22a1cb6ccf9b12b2da49a92bb1905a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:41:19 -0500 Subject: [PATCH 3/6] Add label to link image to repository --- Dockerfile | 1 + 1 file changed, 1 insertion(+) diff --git a/Dockerfile b/Dockerfile index fb1bbf1..7425701 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,5 @@ FROM python:3.8-alpine +LABEL org.opencontainers.image.source=https://github.com/zeroae/terraform-aws-mobius3 RUN addgroup -S mobius3 && \ adduser -S mobius3 -G mobius3 && \ From 4a41cdb991b39bcf752ce588b294413de07a4a9e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:45:13 -0500 Subject: [PATCH 4/6] Update --- docs/terraform.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/terraform.md b/docs/terraform.md index cd97cbb..e76a311 100644 --- a/docs/terraform.md +++ b/docs/terraform.md @@ -20,7 +20,7 @@ No provider. | bucket\_key\_prefix | The key prefix to use for the bucket objects. | `any` | n/a | yes | | bucket\_region | Bucket Region | `any` | n/a | yes | | log\_configuration | Log configuration options to send to a custom log driver for the container. For more details, see https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_LogConfiguration.html | `any` | `null` | no | -| mobius3\_image | The Mobius3 Image for S3<->FS synchronization | `string` | `"quay.io/uktrade/mobius3:v0.0.32"` | no | +| mobius3\_image | The Mobius3 Image for S3<->FS synchronization | `string` | `"ghcr.io/zeroae/terraform-aws-mobius3:0.0.34"` | no | | user | The user that owns the volume. Can be any of these formats: uid, uid:gid. The default is (0:0). | `string` | `"0:0"` | no | | volume\_name | The volume name. | `string` | `"data"` | no | From c10cfeed314218567de2de5921c63896a8e75ce6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:45:15 -0500 Subject: [PATCH 5/6] Update --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 1fe7218..8dad07d 100644 --- a/README.md +++ b/README.md @@ -131,7 +131,7 @@ No provider. | bucket\_key\_prefix | The key prefix to use for the bucket objects. | `any` | n/a | yes | | bucket\_region | Bucket Region | `any` | n/a | yes | | log\_configuration | Log configuration options to send to a custom log driver for the container. For more details, see https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_LogConfiguration.html | `any` | `null` | no | -| mobius3\_image | The Mobius3 Image for S3<->FS synchronization | `string` | `"quay.io/uktrade/mobius3:v0.0.32"` | no | +| mobius3\_image | The Mobius3 Image for S3<->FS synchronization | `string` | `"ghcr.io/zeroae/terraform-aws-mobius3:0.0.34"` | no | | user | The user that owns the volume. Can be any of these formats: uid, uid:gid. The default is (0:0). | `string` | `"0:0"` | no | | volume\_name | The volume name. | `string` | `"data"` | no | From 7cca8fb28ecc3cecf46b1ca26e0aa9d17f104f65 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Patrick=20Sodr=C3=A9?= Date: Tue, 9 Feb 2021 05:49:29 -0500 Subject: [PATCH 6/6] Update README.md again --- README.md | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/README.md b/README.md index 8dad07d..5fc2a54 100644 --- a/README.md +++ b/README.md @@ -61,6 +61,25 @@ We literally have [*hundreds of terraform modules*][terraform_modules] that are +## Security & Compliance [](https://bridgecrew.io/) + +Security scanning is graciously provided by Bridgecrew. Bridgecrew is the leading fully hosted, cloud-native solution providing continuous Terraform security and compliance. + +| Benchmark | Description | +|--------|---------------| +| [![Infrastructure Security](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/general)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=INFRASTRUCTURE+SECURITY) | Infrastructure Security Compliance | +| [![CIS KUBERNETES](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/cis_kubernetes)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=CIS+KUBERNETES+V1.5) | Center for Internet Security, KUBERNETES Compliance | +| [![CIS AWS](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/cis_aws)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=CIS+AWS+V1.2) | Center for Internet Security, AWS Compliance | +| [![CIS AZURE](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/cis_azure)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=CIS+AZURE+V1.1) | Center for Internet Security, AZURE Compliance | +| [![PCI-DSS](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/pci)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=PCI-DSS+V3.2) | Payment Card Industry Data Security Standards Compliance | +| [![NIST-800-53](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/nist)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=NIST-800-53) | National Institute of Standards and Technology Compliance | +| [![ISO27001](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/iso)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=ISO27001) | Information Security Management System, ISO/IEC 27001 Compliance | +| [![SOC2](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/soc2)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=SOC2)| Service Organization Control 2 Compliance | +| [![CIS GCP](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/cis_gcp)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=CIS+GCP+V1.1) | Center for Internet Security, GCP Compliance | +| [![HIPAA](https://www.bridgecrew.cloud/badges/github/zeroae/terraform-aws-mobius3/hipaa)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=zeroae%2Fterraform-aws-mobius3&benchmark=HIPAA) | Health Insurance Portability and Accountability Compliance | + + + ## Usage