Custom integration for Falco findings from Amazon Elastic Kubernetes Service (Amazon EKS) and Amazon Elastic Container Service (Amazon ECS), into AWS Security Hub
The project deploys a Lambda function, that enables generating Falco findings into Security Hub
cdk.json file tells the CDK Toolkit how to execute your app.
This project is set up like a standard Python project. The initialization
process also creates a virtualenv within this project, stored under the
directory. To create the virtualenv it assumes that there is a
python for Windows) executable in your path with access to the
package. If for any reason the automatic creation of the virtualenv fails,
you can create the virtualenv manually.
To manually create a virtualenv on MacOS and Linux:
$ python3 -m venv .venv
After the init process completes and the virtualenv is created, you can use the following step to activate your virtualenv.
$ source .venv/bin/activate
If you are a Windows platform, you would activate the virtualenv like this:
Once the virtualenv is activated, you can install the required dependencies.
$ pip install -r requirements.txt
At this point you can now synthesize the CloudFormation template for this code.
$ cdk synth
To add additional dependencies, for example other CDK libraries, just add
them to your
setup.py file and rerun the
pip install -r requirements.txt
cdk lslist all stacks in the app
cdk synthemits the synthesized CloudFormation template
cdk deploydeploy this stack to your default AWS account/region
cdk diffcompare deployed stack with current state
cdk docsopen CDK documentation
See CONTRIBUTING for more information.
This library is licensed under the MIT-0 License. See the LICENSE file.