Files
plane/.github
Manish Gupta b21fd75bf2 [INFRA-198]: AMI Fixes for marketplace publishing (#3554)
* refactor: update AMI and CloudFormation template handling in CI workflow

- Removed previous manifest file references and associated cleanup steps from the CI workflow.
- Updated S3 paths for storing the latest and versioned AMI manifests.
- Introduced a new step to store the CloudFormation template in S3 with updated paths.
- Enhanced the CloudFormation template to include a parameter for AMI ID, replacing the previous region-based mapping.
- Improved AMI naming convention in Packer configuration to include a timestamp.

* chore: enhance cleanup commands in Packer configuration for AMI builds

- Added removal of authorized_keys for the root user to improve security during AMI creation.
- Included command to clear command history to further secure the AMI environment.

* chore: improve cleanup commands in Packer configuration for AMI builds

- Replaced command to clear command history with specific removal of .bash_history files for both ubuntu and root users.
- Enhanced security measures during AMI creation by ensuring sensitive history data is removed.

* chore: refine cleanup commands in Packer configuration for AMI builds

- Updated command to remove command history files for both ubuntu and root users to a more general pattern, enhancing security during AMI creation.

* feat: add SSH and Application Security Group CIDR parameters to CloudFormation template

- Introduced new parameters for SSH and Application Security Group CIDR configurations, allowing for more granular control over access.
- Updated metadata and validation assertions to ensure these parameters are required when creating new infrastructure.
- Modified security group rules to reference the new CIDR parameters for SSH, HTTP, and HTTPS access.

* fix: update PublicSubnetCidr default value in CloudFormation template

- Changed the default value of PublicSubnetCidr from "10.50.1.0/16" to "10.50.1.0/24" to better align with subnetting requirements for new infrastructure.

* chore: update default values for SSH and Application Security Group CIDR parameters in CloudFormation template

- Changed the default values for SshSecurityGroupCidr and ApplicationSecurityGroupCidr from "0.0.0.0/0" to an empty string to enforce explicit configuration of access controls.
2025-07-02 15:26:56 +05:30
..