https://github.com/greggschofield/golden-image-bakery

An artefact bakery capable of building and configuring machine and container images targeting multiple public cloud IaaS compute options and platforms
https://github.com/greggschofield/golden-image-bakery

Last synced: 4 months ago
JSON representation

An artefact bakery capable of building and configuring machine and container images targeting multiple public cloud IaaS compute options and platforms

• Host: GitHub
• URL: https://github.com/greggschofield/golden-image-bakery
• Owner: GreggSchofield
• License: mit
• Created: 2023-01-25T17:37:51.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2023-01-25T19:12:56.000Z (over 2 years ago)
• Last Synced: 2025-01-15T11:48:20.566Z (5 months ago)
• Size: 4.88 KB
• Stars: 0
• Watchers: 2
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
[![SonarCloud](https://sonarcloud.io/images/project_badges/sonarcloud-white.svg)](https://sonarcloud.io/summary/new_code?id=GreggSchofield_golden-image-bakery)

[![Maintainability Rating](https://sonarcloud.io/api/project_badges/measure?project=GreggSchofield_golden-image-bakery&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id=GreggSchofield_golden-image-bakery)

[![Security Rating](https://sonarcloud.io/api/project_badges/measure?project=GreggSchofield_golden-image-bakery&metric=security_rating)](https://sonarcloud.io/summary/new_code?id=GreggSchofield_golden-image-bakery)

[![Technical Debt](https://sonarcloud.io/api/project_badges/measure?project=GreggSchofield_golden-image-bakery&metric=sqale_index)](https://sonarcloud.io/summary/new_code?id=GreggSchofield_golden-image-bakery)

# golden-image-bakery

An artefact bakery capable of building and configuring machine and container images 

targeting multiple public cloud IaaS compute options and platforms

## Static analysis

All infrastructure as code (IaC) written in Terraform within this repository is

scanned with [SonarCloud](https://www.sonarsource.com/products/sonarcloud/) to

ensure a high standard of maintainability and security among other non-functional

requirements.

## Security

### Vulnerability reporting

Private vulnerability reporting is enabled on this repository. If you discover a

security vulnerability within this repository, please report this following the [GitHub

documentation](https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing/privately-reporting-a-security-vulnerability).

### Dependency scanning

This project has [Dependabot](https://github.com/dependabot) enabled and scans for 

outdated Terraform providers daily at 09:00 UTC. Findings and a remediating pull-request

are opened against the dependabot branch of this repository.