Example code repo for blog post https://chainguard.dev/posts/2022-01-07-cosign-aws-codepipeline
APACHE-2.0 License
This repo is an example of using AWS Codepipeline and CodeBuild to sign and verify a docker image with Sigstore's cosign.
Terraform creates all the AWS Resources necessary to run the Codepipeline.
Create an S3 bucket for Terraform remote state storage, this will have to be unique.
aws s3 mb s3://cosign-aws-codepipeline
Initialize Terraform
make tf_init
Create the Terraform plan
make tf_plan
Apply the changes
make tf_apply
Push this code repo to the AWS Codecommit repo by creating a new remote
git remote add aws $AWS_CODE_COMMIT_REPO
git push aws main
This should kick off the codepipeline and codebuild Terraform creates