├── .github ├── ISSUE_TEMPLATE │ ├── bug_report.md │ └── feature_request.md └── PULL_REQUEST_TEMPLATE.md ├── .gitignore ├── CHANGELOG.md ├── CODE_OF_CONDUCT.md ├── CONTRIBUTING.md ├── LICENSE.txt ├── NOTICE.txt ├── README.md ├── deployment ├── build-s3-dist.sh ├── cdk-solution-helper │ ├── README.md │ ├── index.js │ └── package.json └── framework-nuke │ ├── framework_nuke_core.py │ ├── framework_nuke_environment.py │ └── framework_nuke_helpers.py └── source ├── bin └── compliant-framework.ts ├── cdk.json ├── images └── architecture.png ├── jest.config.js ├── lambda ├── avm_create_govcloud_account │ ├── cfnresponse.py │ ├── index.py │ └── requirements.txt ├── avm_get_ou │ ├── cfnresponse.py │ ├── index.py │ └── requirements.txt ├── avm_invite_govcloud_account │ ├── cfnresponse.py │ ├── index.py │ └── requirements.txt ├── avm_move_account │ ├── cfnresponse.py │ ├── index.py │ └── requirements.txt ├── create_accounts │ ├── index.py │ └── requirements.txt ├── execute_state_machine │ ├── cfnresponse.py │ ├── index.py │ └── requirements.txt ├── initialize_organization │ ├── index.py │ └── requirements.txt ├── invite_accounts │ ├── index.py │ └── requirements.txt ├── notify_failure │ ├── index.py │ └── requirements.txt ├── notify_success │ ├── index.py │ └── requirements.txt ├── solution_helper │ ├── lambda_function.py │ └── requirements.txt ├── verify_govcloud_api_keys │ ├── index.py │ └── requirements.txt └── verify_sns_subscription │ ├── index.py │ └── requirements.txt ├── lib ├── account-vending-machine │ ├── account-vending-machine-construct.ts │ └── templates │ │ └── compliant-framework-govcloud-account-product-v1.0.0.yml ├── compliant-framework-stack.ts └── solution-helper │ ├── lambda-role-cloudwatch-construct.ts │ └── solution-helper-construct.ts ├── package.json ├── repositories ├── buildspec.yml ├── compliant-framework-central-core │ ├── README.md │ └── templates │ │ ├── central │ │ └── central-init.yml │ │ ├── logging │ │ ├── logging-assets.yml │ │ └── logging-init.yml │ │ └── security │ │ ├── security-cloudtrail.yml │ │ ├── security-config.yml │ │ ├── security-guard-duty.yml │ │ ├── security-hub.yml │ │ └── security-iam-groups.yml ├── compliant-framework-central-pipeline │ ├── .gitignore │ ├── .npmignore │ ├── README.md │ ├── bin │ │ └── compliant-framework.ts │ ├── cdk.json │ ├── configs │ │ └── config.json.template │ ├── deploy_to_alpha.bash │ ├── jest.config.js │ ├── lambda │ │ ├── copy_codecommit_repositories_to_s3 │ │ │ └── index.py │ │ ├── create_update_stack │ │ │ └── index.py │ │ ├── expand_s3_sources │ │ │ └── index.py │ │ ├── get_ssm_parameters │ │ │ └── index.py │ │ ├── initialize_organizational_units │ │ │ └── index.py │ │ ├── security_hub_invite_members │ │ │ └── index.py │ │ ├── stack_set_action │ │ │ └── index.py │ │ └── update_artifact_acl │ │ │ └── index.py │ ├── lib │ │ ├── core-pipeline-stack.ts │ │ ├── environment-pipeline-stack.ts │ │ └── pipeline-base.ts │ ├── package.json │ ├── test │ │ └── central-pipeline.test.ts │ └── tsconfig.json ├── compliant-framework-management-services-core │ ├── README.md │ └── templates │ │ ├── management-services-assets-bucket.yml │ │ ├── management-services-directory-vpc.yml │ │ ├── management-services-external-access-vpc.yml │ │ ├── management-services-init.yml │ │ ├── management-services-logging-assets.yml │ │ ├── management-services-logging.yml │ │ ├── management-services-vpc.yml │ │ └── service-catalog │ │ ├── portfolio.yml │ │ └── tenant-services │ │ └── tenant-two-tier-vpc │ │ └── V1.0.0 │ │ ├── tenant-two-tier-vpc-product.yml │ │ └── tenant-two-tier-vpc.yml ├── compliant-framework-security-baseline │ ├── .gitignore │ ├── README.md │ └── templates │ │ ├── backup-services.yml │ │ ├── federation │ │ └── federation.yml │ │ └── security-baseline.yml ├── compliant-framework-transit-core │ ├── README.md │ └── templates │ │ ├── transit-attach-tenant.yml │ │ ├── transit-dmz-vpc.yml │ │ ├── transit-firewall-vpc.yml │ │ ├── transit-gateway-route-tables.yml │ │ ├── transit-gateway.yml │ │ ├── transit-init.yml │ │ ├── transit-inspection-vpc.yml │ │ ├── transit-vpn-attachment.yml │ │ ├── virtual-firewall │ │ ├── transit-gateway-route-tables-directory.yml │ │ ├── transit-gateway-route-tables-external-access.yml │ │ ├── transit-gateway-route-tables-firewall.yml │ │ ├── transit-gateway-route-tables-internal.yml │ │ └── transit-gateway-route-tables-management-services.yml │ │ └── vpc-firewall │ │ ├── transit-gateway-route-tables-directory.yml │ │ ├── transit-gateway-route-tables-dmz.yml │ │ ├── transit-gateway-route-tables-external-access.yml │ │ ├── transit-gateway-route-tables-inspection.yml │ │ ├── transit-gateway-route-tables-internal.yml │ │ └── transit-gateway-route-tables-management-services.yml ├── create_config.py ├── create_repository.py └── wait_for_pipeline.py ├── run-all-tests.sh ├── test ├── __snapshots__ │ ├── account-vending-machine-construct.test.ts.snap │ └── compliant-framework-stack.test.ts.snap ├── account-vending-machine-construct.test.ts └── compliant-framework-stack.test.ts └── tsconfig.json /.github/ISSUE_TEMPLATE/bug_report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/.github/ISSUE_TEMPLATE/bug_report.md -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/.github/ISSUE_TEMPLATE/feature_request.md -------------------------------------------------------------------------------- /.github/PULL_REQUEST_TEMPLATE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/.github/PULL_REQUEST_TEMPLATE.md -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/.gitignore -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/LICENSE.txt -------------------------------------------------------------------------------- /NOTICE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/NOTICE.txt -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/README.md -------------------------------------------------------------------------------- /deployment/build-s3-dist.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/build-s3-dist.sh -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/cdk-solution-helper/README.md -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/index.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/cdk-solution-helper/index.js -------------------------------------------------------------------------------- /deployment/cdk-solution-helper/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/cdk-solution-helper/package.json -------------------------------------------------------------------------------- /deployment/framework-nuke/framework_nuke_core.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/framework-nuke/framework_nuke_core.py -------------------------------------------------------------------------------- /deployment/framework-nuke/framework_nuke_environment.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/framework-nuke/framework_nuke_environment.py -------------------------------------------------------------------------------- /deployment/framework-nuke/framework_nuke_helpers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/deployment/framework-nuke/framework_nuke_helpers.py -------------------------------------------------------------------------------- /source/bin/compliant-framework.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/bin/compliant-framework.ts -------------------------------------------------------------------------------- /source/cdk.json: -------------------------------------------------------------------------------- 1 | { 2 | "app": "npx ts-node bin/compliant-framework.ts" 3 | } -------------------------------------------------------------------------------- /source/images/architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/images/architecture.png -------------------------------------------------------------------------------- /source/jest.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/jest.config.js -------------------------------------------------------------------------------- /source/lambda/avm_create_govcloud_account/cfnresponse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_create_govcloud_account/cfnresponse.py -------------------------------------------------------------------------------- /source/lambda/avm_create_govcloud_account/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_create_govcloud_account/index.py -------------------------------------------------------------------------------- /source/lambda/avm_create_govcloud_account/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/avm_get_ou/cfnresponse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_get_ou/cfnresponse.py -------------------------------------------------------------------------------- /source/lambda/avm_get_ou/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_get_ou/index.py -------------------------------------------------------------------------------- /source/lambda/avm_get_ou/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/avm_invite_govcloud_account/cfnresponse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_invite_govcloud_account/cfnresponse.py -------------------------------------------------------------------------------- /source/lambda/avm_invite_govcloud_account/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_invite_govcloud_account/index.py -------------------------------------------------------------------------------- /source/lambda/avm_invite_govcloud_account/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/avm_move_account/cfnresponse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_move_account/cfnresponse.py -------------------------------------------------------------------------------- /source/lambda/avm_move_account/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/avm_move_account/index.py -------------------------------------------------------------------------------- /source/lambda/avm_move_account/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/create_accounts/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/create_accounts/index.py -------------------------------------------------------------------------------- /source/lambda/create_accounts/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/execute_state_machine/cfnresponse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/execute_state_machine/cfnresponse.py -------------------------------------------------------------------------------- /source/lambda/execute_state_machine/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/execute_state_machine/index.py -------------------------------------------------------------------------------- /source/lambda/execute_state_machine/requirements.txt: -------------------------------------------------------------------------------- 1 | urllib3>=1.25.11 -------------------------------------------------------------------------------- /source/lambda/initialize_organization/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/initialize_organization/index.py -------------------------------------------------------------------------------- /source/lambda/initialize_organization/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/invite_accounts/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/invite_accounts/index.py -------------------------------------------------------------------------------- /source/lambda/invite_accounts/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/notify_failure/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/notify_failure/index.py -------------------------------------------------------------------------------- /source/lambda/notify_failure/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/notify_success/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/notify_success/index.py -------------------------------------------------------------------------------- /source/lambda/notify_success/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/solution_helper/lambda_function.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/solution_helper/lambda_function.py -------------------------------------------------------------------------------- /source/lambda/solution_helper/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/solution_helper/requirements.txt -------------------------------------------------------------------------------- /source/lambda/verify_govcloud_api_keys/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/verify_govcloud_api_keys/index.py -------------------------------------------------------------------------------- /source/lambda/verify_govcloud_api_keys/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lambda/verify_sns_subscription/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lambda/verify_sns_subscription/index.py -------------------------------------------------------------------------------- /source/lambda/verify_sns_subscription/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /source/lib/account-vending-machine/account-vending-machine-construct.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lib/account-vending-machine/account-vending-machine-construct.ts -------------------------------------------------------------------------------- /source/lib/account-vending-machine/templates/compliant-framework-govcloud-account-product-v1.0.0.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lib/account-vending-machine/templates/compliant-framework-govcloud-account-product-v1.0.0.yml -------------------------------------------------------------------------------- /source/lib/compliant-framework-stack.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lib/compliant-framework-stack.ts -------------------------------------------------------------------------------- /source/lib/solution-helper/lambda-role-cloudwatch-construct.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lib/solution-helper/lambda-role-cloudwatch-construct.ts -------------------------------------------------------------------------------- /source/lib/solution-helper/solution-helper-construct.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/lib/solution-helper/solution-helper-construct.ts -------------------------------------------------------------------------------- /source/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/package.json -------------------------------------------------------------------------------- /source/repositories/buildspec.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/buildspec.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/README.md: -------------------------------------------------------------------------------- 1 | # compliant-framework-central-core 2 | 3 | -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/central/central-init.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/central/central-init.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/logging/logging-assets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/logging/logging-assets.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/logging/logging-init.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/logging/logging-init.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/security/security-cloudtrail.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/security/security-cloudtrail.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/security/security-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/security/security-config.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/security/security-guard-duty.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/security/security-guard-duty.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/security/security-hub.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/security/security-hub.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-core/templates/security/security-iam-groups.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-core/templates/security/security-iam-groups.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/.gitignore -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/.npmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/.npmignore -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/README.md: -------------------------------------------------------------------------------- 1 | # compliant-framework-central-pipeline 2 | 3 | -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/bin/compliant-framework.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/bin/compliant-framework.ts -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/cdk.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/cdk.json -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/configs/config.json.template: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/configs/config.json.template -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/deploy_to_alpha.bash: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/deploy_to_alpha.bash -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/jest.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/jest.config.js -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/copy_codecommit_repositories_to_s3/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/copy_codecommit_repositories_to_s3/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/create_update_stack/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/create_update_stack/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/expand_s3_sources/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/expand_s3_sources/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/get_ssm_parameters/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/get_ssm_parameters/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/initialize_organizational_units/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/initialize_organizational_units/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/security_hub_invite_members/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/security_hub_invite_members/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/stack_set_action/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/stack_set_action/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lambda/update_artifact_acl/index.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lambda/update_artifact_acl/index.py -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lib/core-pipeline-stack.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lib/core-pipeline-stack.ts -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lib/environment-pipeline-stack.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lib/environment-pipeline-stack.ts -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/lib/pipeline-base.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/lib/pipeline-base.ts -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/package.json -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/test/central-pipeline.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/test/central-pipeline.test.ts -------------------------------------------------------------------------------- /source/repositories/compliant-framework-central-pipeline/tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-central-pipeline/tsconfig.json -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/README.md: -------------------------------------------------------------------------------- 1 | # compliant-framework-management-services-core -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-assets-bucket.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-assets-bucket.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-directory-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-directory-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-external-access-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-external-access-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-init.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-init.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-logging-assets.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-logging-assets.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-logging.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-logging.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/management-services-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/management-services-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/service-catalog/portfolio.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/service-catalog/portfolio.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/service-catalog/tenant-services/tenant-two-tier-vpc/V1.0.0/tenant-two-tier-vpc-product.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/service-catalog/tenant-services/tenant-two-tier-vpc/V1.0.0/tenant-two-tier-vpc-product.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-management-services-core/templates/service-catalog/tenant-services/tenant-two-tier-vpc/V1.0.0/tenant-two-tier-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-management-services-core/templates/service-catalog/tenant-services/tenant-two-tier-vpc/V1.0.0/tenant-two-tier-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-security-baseline/.gitignore: -------------------------------------------------------------------------------- 1 | *.DS_Store -------------------------------------------------------------------------------- /source/repositories/compliant-framework-security-baseline/README.md: -------------------------------------------------------------------------------- 1 | # compliant-framework-security-baseline -------------------------------------------------------------------------------- /source/repositories/compliant-framework-security-baseline/templates/backup-services.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-security-baseline/templates/backup-services.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-security-baseline/templates/federation/federation.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-security-baseline/templates/federation/federation.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-security-baseline/templates/security-baseline.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-security-baseline/templates/security-baseline.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/README.md: -------------------------------------------------------------------------------- 1 | # compliant-framework-transit-core -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-attach-tenant.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-attach-tenant.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-dmz-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-dmz-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-firewall-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-firewall-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-gateway-route-tables.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-gateway-route-tables.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-gateway.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-gateway.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-init.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-init.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-inspection-vpc.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-inspection-vpc.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/transit-vpn-attachment.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/transit-vpn-attachment.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-directory.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-directory.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-external-access.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-external-access.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-firewall.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-firewall.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-internal.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-internal.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-management-services.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/virtual-firewall/transit-gateway-route-tables-management-services.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-directory.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-directory.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-dmz.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-dmz.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-external-access.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-external-access.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-inspection.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-inspection.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-internal.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-internal.yml -------------------------------------------------------------------------------- /source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-management-services.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/compliant-framework-transit-core/templates/vpc-firewall/transit-gateway-route-tables-management-services.yml -------------------------------------------------------------------------------- /source/repositories/create_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/create_config.py -------------------------------------------------------------------------------- /source/repositories/create_repository.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/create_repository.py -------------------------------------------------------------------------------- /source/repositories/wait_for_pipeline.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/repositories/wait_for_pipeline.py -------------------------------------------------------------------------------- /source/run-all-tests.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/run-all-tests.sh -------------------------------------------------------------------------------- /source/test/__snapshots__/account-vending-machine-construct.test.ts.snap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/test/__snapshots__/account-vending-machine-construct.test.ts.snap -------------------------------------------------------------------------------- /source/test/__snapshots__/compliant-framework-stack.test.ts.snap: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/test/__snapshots__/compliant-framework-stack.test.ts.snap -------------------------------------------------------------------------------- /source/test/account-vending-machine-construct.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/test/account-vending-machine-construct.test.ts -------------------------------------------------------------------------------- /source/test/compliant-framework-stack.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/test/compliant-framework-stack.test.ts -------------------------------------------------------------------------------- /source/tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/awslabs/compliant-framework-for-federal-and-dod-workloads-in-aws-govcloud-us/HEAD/source/tsconfig.json --------------------------------------------------------------------------------