Continuous Delivery for Microservices on EC2 with mu

If you want to get into microservices, but aren’t ready to take the container plunge, you can deploy mu projects directly to AWS EC2 instances.  Using mu’s EC2 mode, you can leverage the benefits of microservices without containerization, and speed up development feedback loops. Read more…

Designing Applications for Failure

I recently had the opportunity to attend an AWS bootcamp Herndon, VA office and a short presentation given by their team on Designing for Failure. It opened my eyes to the reality of application design when dealing with failure or even basic exception handling. One of the defining characteristics between a good developer and a Read more…

Provision a hosted Git repo with AWS CodeCommit using CloudFormation

You’ll learn how to provision a CodeCommit Git repository in a CloudFormation template. Furthermore, you’ll discover how to automate the provisioning of a deployment pipeline that uses this repository as its Source action to deploy an application using CodeDeploy to an EC2 instance. You’ll see examples, patterns and a short video that walks you through the process. Read more…

Automating and Orchestrating OpsWorks in CloudFormation and CodePipeline

This post describes how to automate the integration of AWS OpsWorks and CodePipeline using CloudFormation so that you can click on a Launch Stack button to instantiate all the infrastructure resources. Read more…

Automating ECS: Provisioning in CloudFormation (Part 1)

In this two-part series, you’ll learn how to provision, configure, and orchestrate the EC2 Container Service (ECS) applications into a deployment pipeline that’s capable of deploying new infrastructure and code changes when developers commit changes to a version-control repository so that team members can release new changes to users whenever they choose to do so: Continuous Delivery. Read more…

Security Integration Testing (Part 3): Integrating with a Continuous Delivery pipeline

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the seventh article in the series. Introduction The purpose of this blog series is to show how AWS Config and Lambda can be used to add Security Integration tests to a Continuous Read more…

Automating Penetration Testing in a CI/CD Pipeline (Part 2)

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the sixth article in the series. In the first post, we discussed what OWASP ZAP is, how it’s installed and automating that installation process with Ansible. This second article of Read more…

Create a Pipeline for Elastic Beanstalk in CodePipeline using CloudFormation and CodeCommit

In Building Continuous Deployment on AWS with AWS CodePipeline, Jenkins and AWS Elastic Beanstalk, AWS describes how to manually configure CodePipeline to deploy an Elastic Beanstalk application. In this post, after describing how to create and connect to a new CodeCommit repository, I’ll explain how to fully automate the provisioning of all of the AWS resources Read more…

Security Integration Testing (Part 2): Building and deploying a testing framework on AWS

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the fifth article in the series. Introduction The purpose of this blog series is to show how AWS Config and Lambda can be used to add Security Integration tests to a Continuous Read more…

Security Integration Testing (Part 1): Resource Monitoring with AWS Config Rules

Continuous Security: Security in the Continuous Delivery Pipeline is a series of articles addressing security concerns and testing in the Continuous Delivery pipeline. This is the third article in the series. Introduction In a Continuous Delivery pipeline it is imperative to enforce infrastructure security policies and ensure that any new code or infrastructure changes don’t result Read more…