Fetch SSH private keys from AWS SSM Parameter Store for a Buildkite pipeline’s checkout phase.
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
hooks
README.md
plugin.yml

README.md

ssm-ssh-agent-buildkite-plugin

Wraps the built-in Buildkite checkout phase in a one-shot SSH Agent, populated with an SSH Private key fetched from the AWS Systems Manager Parameter Store.

Requires the awscli to be installed.

  1. Add a Deploy Key to your GitHub repository.
  2. Open the AWS Systems Manager Parameter Store console and create a SecureString named /github/{organisation}/{repository}/deploy-key with the key.
  3. Ensure your Buildkite agent has AWS IAM credentials with permission for ssm:GetParameter and kms:Decrypt.

Example

steps:
- command: script/cibuild
  plugins:
  - "keithduncan/ssm-ssh-agent#v1.0"