Skip to content
This repository has been archived by the owner on Dec 15, 2021. It is now read-only.
/ ssm-ssh-agent-buildkite-plugin Public archive

Fetch SSH private keys from AWS SSM Parameter Store for a Buildkite pipeline’s checkout phase.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

keithduncan/ssm-ssh-agent-buildkite-plugin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
hooks
hooks
 
 
README.md
README.md
 
 
plugin.yml
plugin.yml
 
 

Repository files navigation

ssm-ssh-agent-buildkite-plugin

Superseded by iam-ssh-agent which improves security by removing the need for direct access to private key material.

Wraps the built-in Buildkite checkout phase in a one-shot SSH Agent, populated with an SSH Private key fetched from the AWS Systems Manager Parameter Store.

Requires the awscli to be installed.

  1. Add a Deploy Key to your GitHub repository.
  2. Open the AWS Systems Manager Parameter Store console and create a SecureString named /github/{organisation}/{repository}/deploy-key with the key.
  3. Ensure your Buildkite agent has AWS IAM credentials with permission for ssm:GetParameter and kms:Decrypt.

Example

steps:
- command: script/cibuild
  plugins:
  - "keithduncan/ssm-ssh-agent#v1.0"

About

Fetch SSH private keys from AWS SSM Parameter Store for a Buildkite pipeline’s checkout phase.

Topics

ssh-agent aws-ssm buildkite-plugin

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages