# The Cloud Posse Reference Architecture

> The turnkey architecture for AWS, Datadog & GitHub Actions to get up and running quickly using the Atmos open source framework.

This file contains links to documentation sections following the llmstxt.org standard.

## Table of Contents

- [Best Practices](https://docs.cloudposse.com/docs/best-practices/best-practices): Cloud Posse's Opinionated Reference Architecture Best Practices
- [Developer Best Practices](https://docs.cloudposse.com/docs/best-practices/developer/developer): We've written thousands of lines of code. These are our best practices from the trenches.
- [Editor Config Best Practices](https://docs.cloudposse.com/docs/best-practices/developer/editor-config): Enforce consistent formatting using a `.editorconfig`
- [Sign Your GitHub Commits with SSH](https://docs.cloudposse.com/docs/best-practices/developer/github-sign-your-commits-with-ssh): Sign all your git commits
- [Makefile Best Practices](https://docs.cloudposse.com/docs/best-practices/developer/makefile): Best practices for writing Makefiles
- [Markdown Best Practices](https://docs.cloudposse.com/docs/best-practices/developer/markdown): Use consistent formatting conventions when writing Markdown
- [Password Management](https://docs.cloudposse.com/docs/best-practices/developer/password-management): Use a password management solution with MFA
- [Semantic Versioning](https://docs.cloudposse.com/docs/best-practices/developer/semver): Use semantic versioning the way it was meant to be used
- [Docker Best Practices](https://docs.cloudposse.com/docs/best-practices/docker): Collection of some of our docker-specific best practices.
- [GitHub Feature Branches](https://docs.cloudposse.com/docs/best-practices/github/github-feature-branches): Use separate branches for developing specific features.
- [GitHub Pull Requests](https://docs.cloudposse.com/docs/best-practices/github/github-pull-requests): Best practices using Pull Requests on GitHub.
- [GitHub Best Practices](https://docs.cloudposse.com/docs/best-practices/github/github): Use a `.gitignore` file in the root of every repo to exclude files that should never be committed.
- [Terraform Best Practices](https://docs.cloudposse.com/docs/best-practices/terraform): Our opinionated best-practices for Terraform
- [Code of Conduct](https://docs.cloudposse.com/docs/community/code-of-conduct): This is our Contributor Covenant Code of Conduct.
- [Need help? Join our community!](https://docs.cloudposse.com/docs/community/community): Resources for the Cloud Posse community
- [Contact Us](https://docs.cloudposse.com/docs/community/contact-us): Cloud Posse is a **DevOps Accelerator** and here to help you!
- [Terraform Automated Testing](https://docs.cloudposse.com/docs/community/contribute/automated-testing): Our automated testing strategy and resources
- [Code Review Guidelines](https://docs.cloudposse.com/docs/community/contribute/code-reviews): Code Review Guidelines
- [Component Testing](https://docs.cloudposse.com/docs/community/contribute/component-testing): Our guide for implementing automated component testing with Terratest
- [GitHub Contributors](https://docs.cloudposse.com/docs/community/contribute/contribute): GitHub Contributors
- [Contributor Tips & Tricks](https://docs.cloudposse.com/docs/community/contribute/contributor-tips): Contributor Tips & Tricks
- [GitHub Contributors FAQ](https://docs.cloudposse.com/docs/community/contribute/faq): GitHub Contributors FAQ
- [Our GitHub](https://docs.cloudposse.com/docs/community/contribute/our-github): Information on how to collaborate with Cloud Posse
- [Office Hours Registration](https://docs.cloudposse.com/docs/community/office-hours): Office Hours with Cloud Posse
- [#refarch](https://docs.cloudposse.com/docs/community/slack): Cloud Posse's SweetOps Slack Community
- [Community Support](https://docs.cloudposse.com/docs/community/support): Learn how support works for Cloud Posse open source projects and where to get help.
- [Terraform Components](https://docs.cloudposse.com/docs/components/components): Library of Terraform Root Module Components
- [access-analyzer](https://docs.cloudposse.com/docs/components/library/aws/access-analyzer/README): This component is responsible for configuring AWS Identity and Access Management Access Analyzer within an AWS
- [account](https://docs.cloudposse.com/docs/components/library/aws/account/README): This component is responsible for provisioning the full account hierarchy along with Organizational Units (OUs)
- [account-map](https://docs.cloudposse.com/docs/components/library/aws/account-map/README): This component is responsible for provisioning information only: it simply populates Terraform state with data (account
- [iam-roles](https://docs.cloudposse.com/docs/components/library/aws/account-map/modules/iam-roles/README): This submodule is used by other modules to determine which IAM Roles or AWS CLI Config Profiles to use for various
- [roles-to-principals](https://docs.cloudposse.com/docs/components/library/aws/account-map/modules/roles-to-principals/README): This submodule is used by other modules to map short role names and AWS SSO Permission Set names in accounts designated
- [team-assume-role-policy](https://docs.cloudposse.com/docs/components/library/aws/account-map/modules/team-assume-role-policy/README): This submodule generates a JSON-encoded IAM Policy Document suitable for use as an "Assume Role Policy".
- [account-quotas](https://docs.cloudposse.com/docs/components/library/aws/account-quotas/README): This component is responsible for requesting AWS Service Quota increases
- [account-settings](https://docs.cloudposse.com/docs/components/library/aws/account-settings/README): This component is responsible for provisioning account level settings: IAM password policy, AWS Account Alias, EBS
- [acm](https://docs.cloudposse.com/docs/components/library/aws/acm/README): This component is responsible for requesting an ACM certificate for a domain and adding a CNAME record to the DNS zone
- [alb](https://docs.cloudposse.com/docs/components/library/aws/alb/README): This component is responsible for provisioning a generic Application Load Balancer
- [amplify](https://docs.cloudposse.com/docs/components/library/aws/amplify/README): This component is responsible for provisioning AWS Amplify apps, backend environments, branches, domain associations,
- [api-gateway-account-settings](https://docs.cloudposse.com/docs/components/library/aws/api-gateway-account-settings/README): This component is responsible for setting the global, regional settings required to allow API Gateway to write to
- [api-gateway-rest-api](https://docs.cloudposse.com/docs/components/library/aws/api-gateway-rest-api/README): This component is responsible for deploying an API Gateway REST API
- [argocd-github-repo](https://docs.cloudposse.com/docs/components/library/aws/argocd-github-repo/README): This component is responsible for creating and managing an ArgoCD desired state repository
- [athena](https://docs.cloudposse.com/docs/components/library/aws/athena/README): This component is responsible for provisioning an Amazon Athena workgroup, databases, and related resources
- [aurora-mysql](https://docs.cloudposse.com/docs/components/library/aws/aurora-mysql/README): This component provisions Amazon Aurora MySQL RDS clusters and seeds relevant database information
- [aurora-mysql-resources](https://docs.cloudposse.com/docs/components/library/aws/aurora-mysql-resources/README): This component provisions Aurora MySQL resources: additional databases, users, permissions, and grants
- [aurora-postgres](https://docs.cloudposse.com/docs/components/library/aws/aurora-postgres/README): This component is responsible for provisioning Aurora Postgres RDS clusters
- [aurora-postgres-resources](https://docs.cloudposse.com/docs/components/library/aws/aurora-postgres-resources/README): This component is responsible for provisioning Aurora Postgres resources: additional databases, users, permissions,
- [app](https://docs.cloudposse.com/docs/components/library/aws/auth0/app/README): Auth0 Application component
- [connection](https://docs.cloudposse.com/docs/components/library/aws/auth0/connection/README): Auth 0 Connection component
- [tenant](https://docs.cloudposse.com/docs/components/library/aws/auth0/tenant/README): This component configures an [Auth0](https://auth0
- [aws-backup](https://docs.cloudposse.com/docs/components/library/aws/aws-backup/README): This component is responsible for provisioning an AWS Backup Plan
- [aws-config](https://docs.cloudposse.com/docs/components/library/aws/aws-config/README): This component is responsible for configuring AWS Config
- [org-conformance-pack](https://docs.cloudposse.com/docs/components/library/aws/aws-config/modules/org-conformance-pack/README): This module deploys a
- [aws-inspector](https://docs.cloudposse.com/docs/components/library/aws/aws-inspector/README): This component is responsible for provisioning an
- [aws-inspector2](https://docs.cloudposse.com/docs/components/library/aws/aws-inspector2/README): This component is responsible for configuring Inspector V2 within an AWS Organization
- [aws-saml](https://docs.cloudposse.com/docs/components/library/aws/aws-saml/README): This component provisions SAML metadata into AWS IAM as new SAML providers
- [aws-shield](https://docs.cloudposse.com/docs/components/library/aws/aws-shield/README): This component is responsible for enabling AWS Shield Advanced Protection for the following resources:
- [aws-ssosync](https://docs.cloudposse.com/docs/components/library/aws/aws-ssosync/README): Component: `ssosync`
- [aws-team-roles](https://docs.cloudposse.com/docs/components/library/aws/aws-team-roles/README): This component is responsible for provisioning user and system IAM roles outside the `identity` account
- [aws-teams](https://docs.cloudposse.com/docs/components/library/aws/aws-teams/README): This component is responsible for provisioning all primary user and system roles into the centralized identity account
- [Terraform Components](https://docs.cloudposse.com/docs/components/library/aws/aws): Library of Terraform Root Module Components
- [bastion](https://docs.cloudposse.com/docs/components/library/aws/bastion/README): This component provisions a generic Bastion host within an Auto Scaling Group (ASG) with parameterized `user_data` and
- [cloudmap-namespace](https://docs.cloudposse.com/docs/components/library/aws/cloudmap-namespace/README): <!-- markdownlint-disable -->
- [cloudtrail](https://docs.cloudposse.com/docs/components/library/aws/cloudtrail/README): This component is responsible for provisioning CloudTrail auditing in an individual AWS account
- [cloudtrail-bucket](https://docs.cloudposse.com/docs/components/library/aws/cloudtrail-bucket/README): This component is responsible for provisioning a bucket for storing
- [cloudwatch-logs](https://docs.cloudposse.com/docs/components/library/aws/cloudwatch-logs/README): This component is responsible for creation of CloudWatch Log Streams and Log Groups
- [cognito](https://docs.cloudposse.com/docs/components/library/aws/cognito/README): This component is responsible for provisioning and managing AWS Cognito resources
- [config-bucket](https://docs.cloudposse.com/docs/components/library/aws/config-bucket/README): This module creates an S3 bucket suitable for storing `AWS Config` data
- [datadog-child-organization](https://docs.cloudposse.com/docs/components/library/aws/datadog-child-organization/README): Terraform component to provision a Datadog child organization using the Datadog provider
- [datadog-credentials](https://docs.cloudposse.com/docs/components/library/aws/datadog-credentials/README): This component is responsible for provisioning SSM or ASM entries for Datadog API keys
- [datadog_keys](https://docs.cloudposse.com/docs/components/library/aws/datadog-credentials/modules/datadog_keys/README): Useful submodule for other modules to quickly configure the datadog provider
- [datadog-integration](https://docs.cloudposse.com/docs/components/library/aws/datadog-integration/README): This component is responsible for provisioning Datadog AWS integrations
- [datadog-lambda-forwarder](https://docs.cloudposse.com/docs/components/library/aws/datadog-lambda-forwarder/README): This component provisions all infrastructure required to deploy
- [datadog-logs-archive](https://docs.cloudposse.com/docs/components/library/aws/datadog-logs-archive/README): This component provisions Datadog Log Archives
- [datadog-monitor](https://docs.cloudposse.com/docs/components/library/aws/datadog-monitor/README): This component provisions Datadog monitors and assigns Datadog roles to those monitors
- [datadog-private-location-ecs](https://docs.cloudposse.com/docs/components/library/aws/datadog-private-location-ecs/README): This component creates a Datadog Private Location and deploys it to ECS (EC2 or Fargate)
- [datadog-synthetics](https://docs.cloudposse.com/docs/components/library/aws/datadog-synthetics/README): This component provides the ability to implement
- [datadog-synthetics-private-location](https://docs.cloudposse.com/docs/components/library/aws/datadog-synthetics-private-location/README): This component provisions a Datadog synthetics private location on Datadog and a private location agent on EKS cluster
- [delegated-administrator](https://docs.cloudposse.com/docs/components/library/aws/delegated-administrator/README): Description of this component 55
- [endpoint](https://docs.cloudposse.com/docs/components/library/aws/dms/endpoint/README): This component provisions DMS endpoints
- [iam](https://docs.cloudposse.com/docs/components/library/aws/dms/iam/README): This component provisions IAM roles required for DMS
- [replication-instance](https://docs.cloudposse.com/docs/components/library/aws/dms/replication-instance/README): This component provisions DMS replication instances
- [replication-task](https://docs.cloudposse.com/docs/components/library/aws/dms/replication-task/README): This component provisions DMS replication tasks
- [dns-delegated](https://docs.cloudposse.com/docs/components/library/aws/dns-delegated/README): This component provisions a delegated DNS zone for managing subdomains delegated from a primary DNS account
- [dns-primary](https://docs.cloudposse.com/docs/components/library/aws/dns-primary/README): This component is responsible for provisioning the primary DNS zones into an AWS account
- [documentdb](https://docs.cloudposse.com/docs/components/library/aws/documentdb/README): This component is responsible for provisioning DocumentDB clusters
- [dynamodb](https://docs.cloudposse.com/docs/components/library/aws/dynamodb/README): This component is responsible for provisioning a DynamoDB table
- [ec2-client-vpn](https://docs.cloudposse.com/docs/components/library/aws/ec2-client-vpn/README): This component is responsible for provisioning VPN Client Endpoints
- [ec2-instance](https://docs.cloudposse.com/docs/components/library/aws/ec2-instance/README): This component is responsible for provisioning a single EC2 instance
- [ecr](https://docs.cloudposse.com/docs/components/library/aws/ecr/README): This component is responsible for provisioning repositories, lifecycle rules, and permissions for streamlined ECR usage
- [ecs](https://docs.cloudposse.com/docs/components/library/aws/ecs/README): This component is responsible for provisioning an ECS Cluster and associated load balancer
- [ecs-service](https://docs.cloudposse.com/docs/components/library/aws/ecs-service/README): This component is responsible for creating an ECS service
- [efs](https://docs.cloudposse.com/docs/components/library/aws/efs/README): This component is responsible for provisioning an [EFS](https://aws
- [actions-runner-controller](https://docs.cloudposse.com/docs/components/library/aws/eks/actions-runner-controller/README): This component creates a Helm release for
- [addon](https://docs.cloudposse.com/docs/components/library/aws/eks/addon/README): This component is responsible for installing and managing addons for EKS clusters
- [alb-controller](https://docs.cloudposse.com/docs/components/library/aws/eks/alb-controller/README): This component creates a Helm release for
- [alb-controller-ingress-class](https://docs.cloudposse.com/docs/components/library/aws/eks/alb-controller-ingress-class/README): This component deploys a Kubernetes `IngressClass` resource for the AWS Load Balancer Controller
- [alb-controller-ingress-group](https://docs.cloudposse.com/docs/components/library/aws/eks/alb-controller-ingress-group/README): This component provisions a Kubernetes Service that creates an AWS Application Load Balancer (ALB)
- [argocd](https://docs.cloudposse.com/docs/components/library/aws/eks/argocd/README): This component provisions [Argo CD](https://argoproj
- [cert-manager](https://docs.cloudposse.com/docs/components/library/aws/eks/cert-manager/README): This component creates a Helm release for [cert-manager](https://github
- [cloudwatch](https://docs.cloudposse.com/docs/components/library/aws/eks/cloudwatch/README): This component installs the CloudWatch Observability chart for EKS
- [cluster](https://docs.cloudposse.com/docs/components/library/aws/eks/cluster/README): This component is responsible for provisioning an end-to-end EKS Cluster, including managed node groups and Fargate
- [datadog-agent](https://docs.cloudposse.com/docs/components/library/aws/eks/datadog-agent/README): This component installs the `datadog-agent` for EKS clusters
- [echo-server](https://docs.cloudposse.com/docs/components/library/aws/eks/echo-server/README): This is copied from
- [external-dns](https://docs.cloudposse.com/docs/components/library/aws/eks/external-dns/README): This component creates a Helm deployment for [external-dns](https://github
- [external-secrets-operator](https://docs.cloudposse.com/docs/components/library/aws/eks/external-secrets-operator/README): This component (ESO) is used to create an external `SecretStore` configured to synchronize secrets from AWS SSM
- [github-actions-runner](https://docs.cloudposse.com/docs/components/library/aws/eks/github-actions-runner/README): This component deploys self-hosted GitHub Actions Runners and a
- [idp-roles](https://docs.cloudposse.com/docs/components/library/aws/eks/idp-roles/README): This component installs the `idp-roles` for EKS clusters
- [karpenter-controller](https://docs.cloudposse.com/docs/components/library/aws/eks/karpenter-controller/README): This component provisions [Karpenter](https://karpenter
- [karpenter-node-pool](https://docs.cloudposse.com/docs/components/library/aws/eks/karpenter-node-pool/README): This component deploys [Karpenter NodePools](https://karpenter
- [keda](https://docs.cloudposse.com/docs/components/library/aws/eks/keda/README): This component is used to install the KEDA operator
- [loki](https://docs.cloudposse.com/docs/components/library/aws/eks/loki/README): Grafana Loki is a set of resources that can be combined into a fully featured logging stack
- [metrics-server](https://docs.cloudposse.com/docs/components/library/aws/eks/metrics-server/README): This component creates a Helm release for [metrics-server](https://github
- [node-termination-handler](https://docs.cloudposse.com/docs/components/library/aws/eks/node-termination-handler/README): This component creates a Helm release for
- [prometheus-scraper](https://docs.cloudposse.com/docs/components/library/aws/eks/prometheus-scraper/README): This component provisions the an Amazon Managed collector or scraper to connect Amazon Managed Prometheus (AMP) with an
- [promtail](https://docs.cloudposse.com/docs/components/library/aws/eks/promtail/README): Promtail is an agent which ships the contents of local logs to a Loki instance
- [redis](https://docs.cloudposse.com/docs/components/library/aws/eks/redis/README): This component installs `redis` for EKS clusters
- [redis-operator](https://docs.cloudposse.com/docs/components/library/aws/eks/redis-operator/README): This component installs `redis-operator` for EKS clusters
- [reloader](https://docs.cloudposse.com/docs/components/library/aws/eks/reloader/README): This component installs the [Stakater Reloader](https://github
- [spacelift-worker-pool](https://docs.cloudposse.com/docs/components/library/aws/eks/spacelift-worker-pool/README): This component provisions the `WorkerPool` part of the
- [spacelift-worker-pool-controller](https://docs.cloudposse.com/docs/components/library/aws/eks/spacelift-worker-pool-controller/README): This component provisions the controller part of the
- [storage-class](https://docs.cloudposse.com/docs/components/library/aws/eks/storage-class/README): This component is responsible for provisioning `StorageClasses` in an EKS cluster
- [tailscale](https://docs.cloudposse.com/docs/components/library/aws/eks/tailscale/README): **Stack Level**: Regional
- [vertical-pod-autoscaler](https://docs.cloudposse.com/docs/components/library/aws/eks/vertical-pod-autoscaler/README): Description of this component 55
- [elasticache-redis](https://docs.cloudposse.com/docs/components/library/aws/elasticache-redis/README): This component provisions AWS [ElastiCache Redis](https://aws
- [elasticsearch](https://docs.cloudposse.com/docs/components/library/aws/elasticsearch/README): This component is responsible for provisioning an Elasticsearch cluster with built-in integrations with Kibana and Logstash
- [eventbridge](https://docs.cloudposse.com/docs/components/library/aws/eventbridge/README): The `eventbridge` component is a Terraform module that defines a CloudWatch EventBridge rule
- [github-action-token-rotator](https://docs.cloudposse.com/docs/components/library/aws/github-action-token-rotator/README): This component provisions the
- [github-oidc-provider](https://docs.cloudposse.com/docs/components/library/aws/github-oidc-provider/README): This component authorizes the GitHub OIDC provider as an identity provider for an AWS account
- [github-oidc-role](https://docs.cloudposse.com/docs/components/library/aws/github-oidc-role/README): This component is responsible for creating IAM roles for GitHub Actions to assume
- [github-repository](https://docs.cloudposse.com/docs/components/library/aws/github-repository/README): :lock: Managing GitHub repos in a compliant way just got way easier
- [github-runners](https://docs.cloudposse.com/docs/components/library/aws/github-runners/README): This component is responsible for provisioning EC2 instances for GitHub runners
- [github-webhook](https://docs.cloudposse.com/docs/components/library/aws/github-webhook/README): This component provisions a GitHub webhook for a single GitHub repository
- [global-accelerator](https://docs.cloudposse.com/docs/components/library/aws/global-accelerator/README): This component provisions AWS Global Accelerator and its listeners
- [global-accelerator-endpoint-group](https://docs.cloudposse.com/docs/components/library/aws/global-accelerator-endpoint-group/README): This component is responsible for provisioning a Global Accelerator Endpoint Group
- [catalog-database](https://docs.cloudposse.com/docs/components/library/aws/glue/catalog-database/README): This component provisions Glue catalog databases
- [catalog-table](https://docs.cloudposse.com/docs/components/library/aws/glue/catalog-table/README): This component provisions Glue catalog tables
- [connection](https://docs.cloudposse.com/docs/components/library/aws/glue/connection/README): This component provisions Glue connections
- [crawler](https://docs.cloudposse.com/docs/components/library/aws/glue/crawler/README): This component provisions Glue crawlers
- [iam](https://docs.cloudposse.com/docs/components/library/aws/glue/iam/README): This component provisions IAM roles for AWS Glue
- [job](https://docs.cloudposse.com/docs/components/library/aws/glue/job/README): This component provisions Glue jobs
- [registry](https://docs.cloudposse.com/docs/components/library/aws/glue/registry/README): This component provisions Glue registries
- [schema](https://docs.cloudposse.com/docs/components/library/aws/glue/schema/README): This component provisions Glue schemas
- [trigger](https://docs.cloudposse.com/docs/components/library/aws/glue/trigger/README): This component provisions Glue triggers
- [workflow](https://docs.cloudposse.com/docs/components/library/aws/glue/workflow/README): This component provisions Glue workflows
- [guardduty](https://docs.cloudposse.com/docs/components/library/aws/guardduty/README): This component is responsible for configuring GuardDuty within an AWS Organization
- [iam-policy](https://docs.cloudposse.com/docs/components/library/aws/iam-policy/README): Terraform component that composes IAM policy documents and creates an AWS IAM policy
- [iam-role](https://docs.cloudposse.com/docs/components/library/aws/iam-role/README): This component is responsible for provisioning simple IAM roles
- [iam-service-linked-roles](https://docs.cloudposse.com/docs/components/library/aws/iam-service-linked-roles/README): This component is responsible for provisioning
- [identity-center](https://docs.cloudposse.com/docs/components/library/aws/identity-center/README): This component is responsible for creating [AWS SSO Permission Sets][1] and creating AWS SSO Account Assignments, that
- [ipam](https://docs.cloudposse.com/docs/components/library/aws/ipam/README): This component is responsible for provisioning IPAM per region in a centralized account
- [kinesis-firehose-stream](https://docs.cloudposse.com/docs/components/library/aws/kinesis-firehose-stream/README): This component provisions a Kinesis Firehose delivery stream and at this time supports CloudWatch to S3 delivery
- [kinesis-stream](https://docs.cloudposse.com/docs/components/library/aws/kinesis-stream/README): This component is responsible for provisioning an Amazon Kinesis data stream
- [kms](https://docs.cloudposse.com/docs/components/library/aws/kms/README): This component is responsible for provisioning a KMS Key
- [lakeformation](https://docs.cloudposse.com/docs/components/library/aws/lakeformation/README): This component is responsible for provisioning Amazon Lake Formation resources
- [lambda](https://docs.cloudposse.com/docs/components/library/aws/lambda/README): This component is responsible for provisioning Lambda functions
- [macie](https://docs.cloudposse.com/docs/components/library/aws/macie/README): This component is responsible for configuring Macie within an AWS Organization
- [api-key](https://docs.cloudposse.com/docs/components/library/aws/managed-grafana/api-key/README): This component provisions an API Key for an Amazon Managed Grafana workspace
- [dashboard](https://docs.cloudposse.com/docs/components/library/aws/managed-grafana/dashboard/README): This component is responsible for provisioning a dashboard in an Amazon Managed Grafana workspace
- [workspace](https://docs.cloudposse.com/docs/components/library/aws/managed-grafana/workspace/README): This component provisions an Amazon Managed Grafana workspace
- [loki](https://docs.cloudposse.com/docs/components/library/aws/managed-grafana-data-source/loki/README): This component is responsible for provisioning a Loki data source for an Amazon Managed Grafana workspace
- [managed-prometheus](https://docs.cloudposse.com/docs/components/library/aws/managed-grafana-data-source/managed-prometheus/README): This component provisions an Amazon Managed Prometheus data source for an Amazon Managed Grafana workspace
- [workspace](https://docs.cloudposse.com/docs/components/library/aws/managed-prometheus/workspace/README): This component is responsible for provisioning a workspace for Amazon Managed Service for Prometheus, also known as
- [memorydb](https://docs.cloudposse.com/docs/components/library/aws/memorydb/README): This component provisions an AWS MemoryDB cluster
- [mq-broker](https://docs.cloudposse.com/docs/components/library/aws/mq-broker/README): This component is responsible for provisioning an AmazonMQ broker and the corresponding security group
- [msk](https://docs.cloudposse.com/docs/components/library/aws/msk/README): This component is responsible for provisioning [Amazon Managed Streaming](https://aws
- [mwaa](https://docs.cloudposse.com/docs/components/library/aws/mwaa/README): This component provisions Amazon managed workflows for Apache Airflow
- [network-firewall](https://docs.cloudposse.com/docs/components/library/aws/network-firewall/README): This component is responsible for provisioning [AWS Network Firewall](https://aws
- [nlb](https://docs.cloudposse.com/docs/components/library/aws/nlb/README): This component provisions an AWS Network Load Balancer (NLB) using the
- [opsgenie-team](https://docs.cloudposse.com/docs/components/library/aws/opsgenie-team/README): This component provisions Opsgenie teams and related services, rules, and schedules
- [escalation](https://docs.cloudposse.com/docs/components/library/aws/opsgenie-team/modules/escalation/README): Terraform module to configure
- [integration](https://docs.cloudposse.com/docs/components/library/aws/opsgenie-team/modules/integration/README): This module creates an OpsGenie integrations for a team. By Default, it creates a Datadog integration.
- [routing](https://docs.cloudposse.com/docs/components/library/aws/opsgenie-team/modules/routing/README): This module creates team routing rules, these are the initial rules that are applied to an alert to determine who gets
- [philips-labs-github-runners](https://docs.cloudposse.com/docs/components/library/aws/philips-labs-github-runners/README): This component provisions the surrounding infrastructure for GitHub self-hosted runners
- [private-link-service](https://docs.cloudposse.com/docs/components/library/aws/private-link-service/README): This component provisions AWS VPC Endpoint Services (**provider side**) to expose **YOUR services** to external consumers via AWS PrivateLink
- [rds](https://docs.cloudposse.com/docs/components/library/aws/rds/README): This component is responsible for provisioning an RDS instance
- [redshift](https://docs.cloudposse.com/docs/components/library/aws/redshift/README): This component provisions an AWS Redshift cluster and seeds relevant database
- [redshift-serverless](https://docs.cloudposse.com/docs/components/library/aws/redshift-serverless/README): This component is responsible for provisioning Redshift Serverless clusters
- [route53-resolver-dns-firewall](https://docs.cloudposse.com/docs/components/library/aws/route53-resolver-dns-firewall/README): This component is responsible for provisioning
- [runs-on](https://docs.cloudposse.com/docs/components/library/aws/runs-on/README): Component: `runs-on`
- [s3-bucket](https://docs.cloudposse.com/docs/components/library/aws/s3-bucket/README): This component is responsible for provisioning S3 buckets
- [security-hub](https://docs.cloudposse.com/docs/components/library/aws/security-hub/README): This component is responsible for configuring Security Hub within an AWS Organization
- [ses](https://docs.cloudposse.com/docs/components/library/aws/ses/README): This component provisions Amazon Simple Email Service (SES) to act as an SMTP gateway
- [sftp](https://docs.cloudposse.com/docs/components/library/aws/sftp/README): This component is responsible for provisioning SFTP Endpoints
- [site-to-site-vpn](https://docs.cloudposse.com/docs/components/library/aws/site-to-site-vpn/README): This component provisions a [Site-To-Site VPN](https://aws
- [snowflake-account](https://docs.cloudposse.com/docs/components/library/aws/snowflake-account/README): This component sets up the requirements for all other Snowflake components, including creating the Terraform service
- [snowflake-database](https://docs.cloudposse.com/docs/components/library/aws/snowflake-database/README): All data in Snowflake is stored in database tables, logically structured as collections of columns and rows
- [sns-topic](https://docs.cloudposse.com/docs/components/library/aws/sns-topic/README): This component is responsible for provisioning an SNS topic
- [spa-s3-cloudfront](https://docs.cloudposse.com/docs/components/library/aws/spa-s3-cloudfront/README): This component provisions infrastructure to serve a Single Page Application (SPA) via Amazon S3 and Amazon CloudFront
- [spacelift](https://docs.cloudposse.com/docs/components/library/aws/spacelift/README): These components are responsible for setting up Spacelift and include three components: `spacelift/admin-stack`,
- [admin-stack](https://docs.cloudposse.com/docs/components/library/aws/spacelift/admin-stack/README): This component is responsible for creating an administrative [stack](https://docs
- [idp-group-mappings](https://docs.cloudposse.com/docs/components/library/aws/spacelift/idp-group-mappings/README): This component is responsible for creating and managing the IdP group mappings within the Spacelift organization
- [spaces](https://docs.cloudposse.com/docs/components/library/aws/spacelift/spaces/README): This component is responsible for creating and managing the [spaces](https://docs
- [worker-pool-asg](https://docs.cloudposse.com/docs/components/library/aws/spacelift/worker-pool-asg/README): This component provisions Spacelift worker pools on AWS using an Auto Scaling Group
- [sqs-queue](https://docs.cloudposse.com/docs/components/library/aws/sqs-queue/README): This component is responsible for creating an SQS queue
- [ssm-parameters](https://docs.cloudposse.com/docs/components/library/aws/ssm-parameters/README): This component is responsible for provisioning Parameter Store resources against AWS SSM
- [sso-saml-provider](https://docs.cloudposse.com/docs/components/library/aws/sso-saml-provider/README): This component reads sso credentials from SSM Parameter store and provides them as outputs
- [strongdm](https://docs.cloudposse.com/docs/components/library/aws/strongdm/README): This component provisions [strongDM](https://www
- [tfstate-backend](https://docs.cloudposse.com/docs/components/library/aws/tfstate-backend/README): This component is responsible for provisioning an S3 Bucket and DynamoDB table that follow security best practices for
- [tgw](https://docs.cloudposse.com/docs/components/library/aws/tgw/README): AWS Transit Gateway connects your Amazon Virtual Private Clouds (VPCs) and on-premises networks through a central hub.
- [attachment](https://docs.cloudposse.com/docs/components/library/aws/tgw/attachment/README): This component creates a Transit Gateway VPC Attachment and optionally creates an association with a Transit Gateway Route Table
- [hub](https://docs.cloudposse.com/docs/components/library/aws/tgw/hub/README): This component is responsible for provisioning an [AWS Transit Gateway](https://aws
- [hub-connector](https://docs.cloudposse.com/docs/components/library/aws/tgw/hub-connector/README): This component is responsible for provisioning an
- [routes](https://docs.cloudposse.com/docs/components/library/aws/tgw/routes/README): Manages AWS Transit Gateway (TGW) route tables, including static routes and
- [spoke](https://docs.cloudposse.com/docs/components/library/aws/tgw/spoke/README): This component is responsible for provisioning [AWS Transit Gateway](https://aws
- [vpc](https://docs.cloudposse.com/docs/components/library/aws/vpc/README): This component is responsible for provisioning a VPC and corresponding Subnets
- [vpc-flow-logs-bucket](https://docs.cloudposse.com/docs/components/library/aws/vpc-flow-logs-bucket/README): This component provisions an encrypted S3 bucket configured to receive VPC Flow Logs
- [vpc-peering](https://docs.cloudposse.com/docs/components/library/aws/vpc-peering/README): This component is responsible for creating a peering connection between two VPCs existing in different AWS accounts
- [vpc-routes](https://docs.cloudposse.com/docs/components/library/aws/vpc-routes/README): This component provisions routes in AWS VPC route tables
- [waf](https://docs.cloudposse.com/docs/components/library/aws/waf/README): This component is responsible for provisioning an AWS Web Application Firewall (WAF) with an associated managed rule
- [zscaler](https://docs.cloudposse.com/docs/components/library/aws/zscaler/README): This component is responsible for provisioning ZScaler Private Access Connector instances on Amazon Linux 2 AMIs
- [Terraform Components](https://docs.cloudposse.com/docs/components/library/library): Library of Terraform Root Module Components
- [GitHub Actions](https://docs.cloudposse.com/docs/github-actions/github-actions): GitHub Actions Library
- [GitHub Actions](https://docs.cloudposse.com/docs/github-actions/library/actions/actions): GitHub Actions
- [atmos-affected-stacks](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-affected-stacks/README): A GitHub Action to get a list of affected atmos stacks for a pull request
- [atmos-affected-trigger-spacelift](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-affected-trigger-spacelift/README): GitHub Action for Triggering Affected Spacelift Stacks
- [atmos-component-updater](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-component-updater/README): This is GitHub Action that can be used as a workflow for automatic updates via Pull Requests in your infrastructure repository according to version...
- [atmos-get-setting](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-get-setting/README): GitHub Action to retrieve a setting from [atmos](https://github.com/cloudposse/atmos) configuration.
- [atmos-terraform-apply](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-terraform-apply/README): This Github Action is used to run Terraform apply for a single, Atmos-supported component with a saved planfile in S3 and DynamoDB.
- [atmos-terraform-drift-detection](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-terraform-drift-detection/README): This Github Action is used to detect drift
- [atmos-terraform-drift-remediation](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-terraform-drift-remediation/README): This Github Action is used to remediate drift
- [atmos-terraform-plan](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-terraform-plan/README): This Github Action is used to run Terraform plan for a single, Atmos-supported component and save the given planfile to S3 and DynamoDB.
- [atmos-terraform-select-components](https://docs.cloudposse.com/docs/github-actions/library/actions/atmos-terraform-select-components/README): GitHub Action that outputs list of Atmos components by jq query
- [auto-format](https://docs.cloudposse.com/docs/github-actions/library/actions/auto-format/README): Github Action Auto-Format runs several repository "hygiene" tasks for repositories:
- [auto-release](https://docs.cloudposse.com/docs/github-actions/library/actions/auto-release/README): This is an opinionated composite Github Action that implements a workflow based on the popular `release-drafter` action to automatically draft rele...
- [aws-region-reduction-map](https://docs.cloudposse.com/docs/github-actions/library/actions/aws-region-reduction-map/README): Converts AWS region names from full names to abbreviations
- [datadog-notify](https://docs.cloudposse.com/docs/github-actions/library/actions/datadog-notify/README): Create Datadog Notify Event
- [deploy-argocd](https://docs.cloudposse.com/docs/github-actions/library/actions/deploy-argocd/README): Deploy on Kubernetes with ArgoCD
- [deploy-ecspresso](https://docs.cloudposse.com/docs/github-actions/library/actions/deploy-ecspresso/README): Deploy on ECS with [Escpresso](https://github.com/kayac/ecspresso)
- [deploy-helmfile](https://docs.cloudposse.com/docs/github-actions/library/actions/deploy-helmfile/README): Deploy on Kubernetes with HelmFile
- [deploy-spacelift](https://docs.cloudposse.com/docs/github-actions/library/actions/deploy-spacelift/README): Opinionated way to deploy Docker image app with Spacelift
- [docker-build-push](https://docs.cloudposse.com/docs/github-actions/library/actions/docker-build-push/README): Build Docker image and push it
- [docker-compose-test-run](https://docs.cloudposse.com/docs/github-actions/library/actions/docker-compose-test-run/README): Up docker compose and run tests in specific container
- [docker-image-exists](https://docs.cloudposse.com/docs/github-actions/library/actions/docker-image-exists/README): Check if docker image exists by pulling it
- [docker-promote](https://docs.cloudposse.com/docs/github-actions/library/actions/docker-promote/README): Promote docker image
- [interface-environment](https://docs.cloudposse.com/docs/github-actions/library/actions/interface-environment/README): Get Environments settings from private settings action provider
- [jq](https://docs.cloudposse.com/docs/github-actions/library/actions/jq/README): Process a input with a jq script and output result as step output
- [kubernetes-environment](https://docs.cloudposse.com/docs/github-actions/library/actions/kubernetes-environment/README): This repository wraps the environment information action, allowing it to be used as a replacement in support of various string functions and namesp...
- [major-release-tagger](https://docs.cloudposse.com/docs/github-actions/library/actions/major-release-tagger/README): GitHub Action that automatically generates or updates `v<major-release>` tags every time a new release is published.
- [matrix-extended](https://docs.cloudposse.com/docs/github-actions/library/actions/matrix-extended/README): GitHub Action that when used together with reusable workflows makes it easier to workaround the limit of 256 jobs in a matrix.
- [matrix-outputs-read](https://docs.cloudposse.com/docs/github-actions/library/actions/matrix-outputs-read/README): [Workaround implementation](https://github.com/community/community/discussions/17245#discussioncomment-3814009) - Read matrix jobs outputs
- [matrix-outputs-write](https://docs.cloudposse.com/docs/github-actions/library/actions/matrix-outputs-write/README): [Workaround implementation](https://github.com/community/community/discussions/17245#discussioncomment-3814009) - Write matrix jobs outputs
- [monorepo-random-controller](https://docs.cloudposse.com/docs/github-actions/library/actions/monorepo-random-controller/README): Monorepo random controller used for demo
- [preview-environment-controller](https://docs.cloudposse.com/docs/github-actions/library/actions/preview-environment-controller/README): Action to manage to deploy and purge preview environments depends on PR labels
- [preview-labels-cleanup](https://docs.cloudposse.com/docs/github-actions/library/actions/preview-labels-cleanup/README): Remove labels used to control deployments with [github-action-preview-environment-controller](https://github.com/cloudposse/github-action-preview-e...
- [release-branch-manager](https://docs.cloudposse.com/docs/github-actions/library/actions/release-branch-manager/README): GitHub Action for Managing Release Branches
- [release-label-validator](https://docs.cloudposse.com/docs/github-actions/library/actions/release-label-validator/README): This GitHub Action validates that the major label is only assigned to Pull Requests targeting the default branch, enhancing the management of signi...
- [run-ecspresso](https://docs.cloudposse.com/docs/github-actions/library/actions/run-ecspresso/README): Run ECS task with [Escpresso](https://github.com/kayac/ecspresso)
- [secret-outputs](https://docs.cloudposse.com/docs/github-actions/library/actions/secret-outputs/README): This GitHub Action implement [workaround](https://nitratine.net/blog/post/how-to-pass-secrets-between-runners-in-github-actions/) for the problem 
- [seek-deployment](https://docs.cloudposse.com/docs/github-actions/library/actions/seek-deployment/README): Get GitHub deployment object by ref and environment name
- [setup-atmos](https://docs.cloudposse.com/docs/github-actions/library/actions/setup-atmos/README): Install atmos for use in GitHub Actions
- [spacelift-stack-deploy](https://docs.cloudposse.com/docs/github-actions/library/actions/spacelift-stack-deploy/README): Trigger Spacelist stack synchronously
- [sync-docker-repos](https://docs.cloudposse.com/docs/github-actions/library/actions/sync-docker-repos/README): GitHub Action to sync two docker repositories.
- [terraform-auto-context](https://docs.cloudposse.com/docs/github-actions/library/actions/terraform-auto-context/README): This is a Github Action that will automatically update the `context.tf` file in the calling repo against the most recent version published by Cloud...
- [terraform-plan-storage](https://docs.cloudposse.com/docs/github-actions/library/actions/terraform-plan-storage/README): A GitHub Action to securely store Terraform plan files in a cloud storage (S3 or Azure Blob Storage) with metadata storage in cloud document databa...
- [terratest](https://docs.cloudposse.com/docs/github-actions/library/actions/terratest/README): A GitHub Action to run Terratest tests and post the results as a build artifact.
- [validate-codeowners](https://docs.cloudposse.com/docs/github-actions/library/actions/validate-codeowners/README): This is a Github Action to validate the `CODEOWNERS` file by running a series of checks against the `CODEOWNERS` file to ensure that it's valid and...
- [wait-commit-status](https://docs.cloudposse.com/docs/github-actions/library/actions/wait-commit-status/README): Wait for commit status
- [yaml-config-query](https://docs.cloudposse.com/docs/github-actions/library/actions/yaml-config-query/README): Define YAML document, filter it with JSON query and get result as outputs
- [GitHub Actions](https://docs.cloudposse.com/docs/github-actions/library/library): GitHub Actions Library
- [Reference Architecture Overview](https://docs.cloudposse.com/docs/intro/intro): Overview of the Reference Architecture implementation using Atmos
- [Choose Your Path](https://docs.cloudposse.com/docs/intro/path): Select the path that best fits your role and goals
- [Action Items](https://docs.cloudposse.com/docs/jumpstart/action-items): import Intro from '@site/src/components/Intro';
- [FAQ](https://docs.cloudposse.com/docs/jumpstart/faq): Frequently Asked Questions
- [Watch All Handoffs](https://docs.cloudposse.com/docs/jumpstart/handoffs): import Slider, { Slide } from '@site/src/components/Slider'
- [Get a Jumpstart with Cloud Posse](https://docs.cloudposse.com/docs/jumpstart/jumpstart): import Intro from '@site/src/components/Intro';
- [Kick Off with Cloud Posse](https://docs.cloudposse.com/docs/jumpstart/kickoff): import Link from "@docusaurus/Link";
- [Onboarding](https://docs.cloudposse.com/docs/jumpstart/onboarding): import TaskList from '@site/src/components/TaskList';
- [How to Provision Shared Slack Channels](https://docs.cloudposse.com/docs/jumpstart/tutorials/how-to-provision-shared-slack-channels): How to provision shared Slack channels between our teams
- [Offboarding Cloud Posse](https://docs.cloudposse.com/docs/jumpstart/tutorials/offboarding-cloudposse): How to remove Cloud Posse's access to your systems
- [Tutorials](https://docs.cloudposse.com/docs/jumpstart/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Deploy CloudTrail and Account Budgets](https://docs.cloudposse.com/docs/layers/accounts/account-baseline): import Intro from '@site/src/components/Intro';
- [Account Management](https://docs.cloudposse.com/docs/layers/accounts/accounts): import Intro from '@site/src/components/Intro';
- [Deploying AWS Accounts](https://docs.cloudposse.com/docs/layers/accounts/deploy-accounts): Deploy AWS accounts with `atmos` workflows and ClickOps.
- [Decide on AWS Account Flavors and Organizational Units](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-aws-account-flavors-and-organizational-units): Decide how to organize workloads for isolation and management
- [Decide on AWS Organization Strategy](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-aws-organization-strategy): Decide whether to create or reuse AWS Organizations
- [Decide on AWS Support](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-aws-support): Decide which accounts need AWS Support
- [Decide on Email Address Format for AWS Accounts](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-email-address-format-for-aws-accounts): Decide what emails will be used for AWS Accounts
- [Decide on MFA Solution for AWS Root Accounts](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-mfa-solution-for-aws-root-accounts): Decide on MFA Solution for AWS Root Accounts
- [Decide on Terraform State Backend Architecture](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/decide-on-terraform-state-backend-architecture): Decide how to organize Terraform State across accounts
- [Design Decisions](https://docs.cloudposse.com/docs/layers/accounts/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [FAQ](https://docs.cloudposse.com/docs/layers/accounts/faq): import Intro from '@site/src/components/Intro';
- [Initializing the Terraform State S3 Backend](https://docs.cloudposse.com/docs/layers/accounts/initialize-tfstate): import Intro from '@site/src/components/Intro';
- [Preparing Your AWS Organization](https://docs.cloudposse.com/docs/layers/accounts/prepare-aws-organization): import Intro from '@site/src/components/Intro';
- [Implement AWS Cold Start](https://docs.cloudposse.com/docs/layers/accounts/tutorials/cold-start): Steps to initialize a net-new AWS Organization with Terraform
- [Old Cold Start Components (Deprecated)](https://docs.cloudposse.com/docs/layers/accounts/tutorials/deprecated-cold-start-components): import Intro from '@site/src/components/Intro';
- [Add a new Organizational Unit](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-add-a-new-organizational-unit): Add Organizational Units to AWS Organization in the `account` catalog
- [How to add or mirror a new region](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-add-or-mirror-a-new-region): import Intro from '@site/src/components/Intro';
- [How to Adopt/Import Legacy AWS Accounts for Management with Atmos](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-adopt-import-legacy-aws-accounts-for-use-with-the-infrast): import Intro from '@site/src/components/Intro';
- [How to Create and Setup AWS Accounts](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-create-and-setup-aws-accounts): Guide for creating and setting up new AWS accounts
- [How to Create `SuperAdmin` user](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-create-superadmin-user): Create `SuperAdmin` for secure, controlled AWS root access.
- [How to Delete AWS Accounts](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-delete-aws-accounts): Step-by-step guide for deleting AWS accounts
- [How to manage Account Settings](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-manage-account-settings): Manage and update AWS account settings and budgets
- [How to Register Pristine AWS Root Account](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-register-pristine-aws-root-account): Step-by-step setup of a new AWS root account
- [Set Up AWS Email Notifications](https://docs.cloudposse.com/docs/layers/accounts/tutorials/how-to-set-up-aws-email-notifications): Set up AWS email notifications to Slack channel
- [Manual Cold Start Implementation](https://docs.cloudposse.com/docs/layers/accounts/tutorials/manual-configuration): Manual guide to setting up AWS Organization with SweetOps
- [Structure of Terraform S3 State Backend Bucket](https://docs.cloudposse.com/docs/layers/accounts/tutorials/terraform-s3-state): Understand the structure of a Terraform S3 state backend
- [Atmos Pro](https://docs.cloudposse.com/docs/layers/atmos-pro/atmos-pro): import Intro from '@site/src/components/Intro';
- [Setup Atmos Pro](https://docs.cloudposse.com/docs/layers/atmos-pro/setup): import Intro from '@site/src/components/Intro';
- [Deploy Infrastructure with CloudFormation](https://docs.cloudposse.com/docs/layers/atmos-pro/tutorials/deploy-with-cloudformation): import Intro from '@site/src/components/Intro';
- [Deploy with Atmos and Terraform](https://docs.cloudposse.com/docs/layers/atmos-pro/tutorials/deploy-with-terraform): import Intro from '@site/src/components/Intro';
- [Tutorials](https://docs.cloudposse.com/docs/layers/atmos-pro/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Prepare Container Registry](https://docs.cloudposse.com/docs/layers/containers/prerequisite): import Intro from '@site/src/components/Intro';
- [Provision Databases](https://docs.cloudposse.com/docs/layers/data/data): import Intro from '@site/src/components/Intro';
- [Decide on Amazon Managed Workflows for Apache Airflow (MWAA) Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-amazon-managed-workflows-for-apache-airflow-mwaa-requi): import Intro from "@site/src/components/Intro";
- [Decide on Amazon OpenSearch Service (Elasticsearch) Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-amazon-opensearch-service-elasticsearch-requirements): import Intro from "@site/src/components/Intro";
- [Decide on Automated Backup Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-automated-backup-requirements): import Intro from "@site/src/components/Intro";
- [Decide on AWS Backup Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-aws-backup-requirements): import Intro from "@site/src/components/Intro";
- [Decide on AWS EMR Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-aws-emr-requirements): import Intro from "@site/src/components/Intro";
- [Decide on AWS Managed RabbitMQ Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-aws-managed-rabbitmq-requirements): import Intro from "@site/src/components/Intro";
- [Decide on Database Schema Migration Strategy](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-database-schema-migration-strategy): import Intro from "@site/src/components/Intro";
- [Decide on DocumentDB Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-documentdb-requirements): import Intro from "@site/src/components/Intro";
- [Decide on DynamoDB Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-dynamodb-requirements): import Intro from "@site/src/components/Intro";
- [Decide on Elasticache Redis Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-elasticache-redis-requirements): import Intro from "@site/src/components/Intro";
- [Decide on MSK Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-msk-requirements): import Intro from "@site/src/components/Intro";
- [Decide on RDS Aurora DB Cluster Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-rds-aurora-db-cluster-requirements): import Intro from "@site/src/components/Intro";
- [Decide on RDS Technology and Architecture](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-rds-technology-and-architecture): import Intro from "@site/src/components/Intro";
- [Decide on S3 Bucket Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-s3-bucket-requirements): import Intro from "@site/src/components/Intro";
- [Decide on SFTP Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-sftp-requirements): import Intro from "@site/src/components/Intro";
- [Decide on the backup AWS region for Aurora Global Cluster](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-on-the-backup-aws-region-for-aurora-global-cluster): import Intro from "@site/src/components/Intro";
- [Decide Whether to Use RDS IAM Authentication](https://docs.cloudposse.com/docs/layers/data/design-decisions/decide-whether-to-use-rds-iam-authentication): import Intro from "@site/src/components/Intro";
- [Design Decisions](https://docs.cloudposse.com/docs/layers/data/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [(TODO) Decide on RDS Aurora Serverless Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/todo-decide-on-rds-aurora-serverless-requirements): import Intro from "@site/src/components/Intro";
- [(TODO) Decide on RDS Instance Requirements](https://docs.cloudposse.com/docs/layers/data/design-decisions/todo-decide-on-rds-instance-requirements): import Intro from "@site/src/components/Intro";
- [Setup Databases](https://docs.cloudposse.com/docs/layers/data/setup): Provision databases in AWS using Atmos
- [How to Enable Cross-Region Backups in AWS-Backup](https://docs.cloudposse.com/docs/layers/data/tutorials/how-to-enable-cross-region-backups-in-aws-backup): Learn how to enable cross-region backups with AWS Backup
- [How to Migrate RDS Snapshots](https://docs.cloudposse.com/docs/layers/data/tutorials/how-to-migrate-rds-snapshots): How to migrate RDS snapshots across AWS Organizations
- [Tutorials](https://docs.cloudposse.com/docs/layers/data/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Deploying the ECS Platform](https://docs.cloudposse.com/docs/layers/ecs/deploy-clusters): import Intro from '@site/src/components/Intro';
- [Decide on ECS load balancer requirements](https://docs.cloudposse.com/docs/layers/ecs/design-decisions/decide-on-ecs-load-balancer-requirements): Decide how many ECS load balancers are needed
- [Decide on the Application Service Log Destination for ECS](https://docs.cloudposse.com/docs/layers/ecs/design-decisions/decide-on-the-application-service-log-destination-for-ecs): Decide how to group logs with CloudWatch
- [Review Design Decisions](https://docs.cloudposse.com/docs/layers/ecs/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [ECS Foundational Platform](https://docs.cloudposse.com/docs/layers/ecs/ecs): import ReactPlayer from "react-player";
- [FAQ](https://docs.cloudposse.com/docs/layers/ecs/faq): import Intro from '@site/src/components/Intro';
- [Provision Example Services on the ECS Platform](https://docs.cloudposse.com/docs/layers/ecs/provision-services): import Intro from '@site/src/components/Intro';
- [Deploy 1Password SCIM Bridge](https://docs.cloudposse.com/docs/layers/ecs/tutorials/1password-scim-bridge): Deploy the 1Password SCIM Bridge for ECS environments
- [Setup Vanity Domains on an ALB](https://docs.cloudposse.com/docs/layers/ecs/tutorials/how-to-setup-vanity-domains-on-alb-ecs): Setup up your customer-facing vanity domains
- [Tutorials](https://docs.cloudposse.com/docs/layers/ecs/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Deploying the EKS Platform](https://docs.cloudposse.com/docs/layers/eks/deploy-clusters): import Intro from '@site/src/components/Intro';
- [Decide on Default Storage Class for EKS Clusters](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-default-storage-class): Determine the default storage class for Kubernetes EKS clusters
- [Decide on EKS Node Pool Architecture](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-eks-node-pool-architecture): Decide on the architecture of the EKS node pools
- [Decide on email address for cert-manager support emails](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-email-address-for-cert-manager-support-emails): Decide what address to use `cert-manager` support emails
- [Decide on Helm Chart Repository Strategy](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-helm-chart-repository-strategy): Decide where to host and manage Helm charts
- [Decide on Host OS Flavor for EKS](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-host-os-flavor-for-eks): Decide on the AMI for EKS cluster nodes
- [Decide on Kubernetes Ingress Controller(s)](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-kubernetes-ingress-controller-s): Decide which Kubernetes Ingress Controller(s) to use with EKS
- [Decide on Secrets Management for EKS](https://docs.cloudposse.com/docs/layers/eks/design-decisions/decide-on-secrets-management-for-eks): Decide on the secrets management strategy for EKS.
- [Review Design Decisions](https://docs.cloudposse.com/docs/layers/eks/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [EKS Foundational Platform](https://docs.cloudposse.com/docs/layers/eks/eks): import Intro from '@site/src/components/Intro';
- [FAQ](https://docs.cloudposse.com/docs/layers/eks/faq): import Intro from '@site/src/components/Intro';
- [EKS as a Foundational Platform](https://docs.cloudposse.com/docs/layers/eks/foundational-platform): import Intro from '@site/src/components/Intro';
- [How to Setup Vanity Domains with an ALB on EKS](https://docs.cloudposse.com/docs/layers/eks/tutorials/how-to-setup-vanity-domains-on-alb-eks): Learn how to use vanity domains with EKS
- [Tutorials](https://docs.cloudposse.com/docs/layers/eks/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Build Your Foundation](https://docs.cloudposse.com/docs/layers/foundation): import Intro from '@site/src/components/Intro';
- [Decide on Self-Hosted Runner Architecture](https://docs.cloudposse.com/docs/layers/github-actions/design-decisions/decide-on-self-hosted-runner-architecture): Decide how to create self-hosted runners
- [Decide on Self-Hosted Runner Placement](https://docs.cloudposse.com/docs/layers/github-actions/design-decisions/decide-on-self-hosted-runner-placement): Decide where to place self-hosted runners in your AWS organization
- [Design Decisions](https://docs.cloudposse.com/docs/layers/github-actions/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [[EKS] GitHub Action Runner Controller](https://docs.cloudposse.com/docs/layers/github-actions/eks-github-actions-controller): import Intro from '@site/src/components/Intro';
- [Setup GitHub Actions](https://docs.cloudposse.com/docs/layers/github-actions/github-actions): import Intro from '@site/src/components/Intro';
- [How to use GitHub OIDC with AWS](https://docs.cloudposse.com/docs/layers/github-actions/github-oidc-with-aws): import Intro from '@site/src/components/Intro';
- [Philips Labs GitHub Action Runners](https://docs.cloudposse.com/docs/layers/github-actions/philips-labs-github-runners): import Intro from "@site/src/components/Intro";
- [Runs On - Self-Hosted Runners](https://docs.cloudposse.com/docs/layers/github-actions/runs-on): import Intro from '@site/src/components/Intro';
- [Example Workflows](https://docs.cloudposse.com/docs/layers/gitops/example-workflows): import Intro from '@site/src/components/Intro';
- [Frequently Asked Questions](https://docs.cloudposse.com/docs/layers/gitops/faq): By default, Cloud Posse includes a few labels for common use-cases.
- [Quick Start](https://docs.cloudposse.com/docs/layers/gitops/gitops): import Intro from '@site/src/components/Intro';
- [Setup GitOps with GitHub Actions](https://docs.cloudposse.com/docs/layers/gitops/setup): import Intro from '@site/src/components/Intro';
- [AWS Identity Center (SSO) ClickOps](https://docs.cloudposse.com/docs/layers/identity/aws-sso): Setup AWS SSO with external IdPs
- [Centralized access management for Terraform](https://docs.cloudposse.com/docs/layers/identity/centralized-terraform-access): Overview of centralized access management for AWS
- [Deploy AWS Teams and Team Roles across your AWS Organization](https://docs.cloudposse.com/docs/layers/identity/deploy): Provision AWS teams, integrate SSO, generate role configurations.
- [Decide on AWS CLI Login](https://docs.cloudposse.com/docs/layers/identity/design-decisions/decide-on-aws-cli-login): Decide on a CLI tool that enables AWS login and credentials via SAML IDP for CLI and web console access.
- [Decide on Identity Provider (IdP) Integration Method](https://docs.cloudposse.com/docs/layers/identity/design-decisions/decide-on-idp-integration): Decide how to use Identity Provider (IdP) with AWS
- [Decide on Identity Provider (IdP)](https://docs.cloudposse.com/docs/layers/identity/design-decisions/decide-on-idp): Decide which Identity Provider (IdP) to use with AWS
- [Design Decisions](https://docs.cloudposse.com/docs/layers/identity/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [Access Control Architecture](https://docs.cloudposse.com/docs/layers/identity/docs/aws-access-control-architecture): Explanation dynamic terraform roles and access control
- [Access Control Evolution](https://docs.cloudposse.com/docs/layers/identity/docs/aws-access-control-evolution): Understand how our access model has evolved
- [AWS Access Control Overview](https://docs.cloudposse.com/docs/layers/identity/docs/aws-access-control): How we manage access to AWS resources
- [Restricting Admin Access to Sensitive Accounts](https://docs.cloudposse.com/docs/layers/identity/docs/aws-restricting-admin-access): import Intro from '@site/src/components/Intro';
- [Documentation](https://docs.cloudposse.com/docs/layers/identity/docs/docs): import Intro from '@site/src/components/Intro';
- [Dynamic Terraform Roles](https://docs.cloudposse.com/docs/layers/identity/docs/dynamic-terraform-roles): Learn how Terraform automatically discovers roles
- [FAQ](https://docs.cloudposse.com/docs/layers/identity/faq): import Intro from '@site/src/components/Intro';
- [How to Log into AWS](https://docs.cloudposse.com/docs/layers/identity/how-to-log-into-aws): Use Leapp to login to AWS
- [Identity and Authentication](https://docs.cloudposse.com/docs/layers/identity/identity): Setup fine-grained access control for an entire organization
- [Using AWS SAML to Access AWS](https://docs.cloudposse.com/docs/layers/identity/optional/aws-saml): Authenticate with AWS via a federated identity using AWS SAML.
- [Optional](https://docs.cloudposse.com/docs/layers/identity/optional/optional): import Intro from '@site/src/components/Intro';
- [Create Custom IAM roles](https://docs.cloudposse.com/docs/layers/identity/tutorials/expanding-iam-roles): Learn how to add your own custom IAM roles
- [How to create a Delegated role for assumption by one or more Primary roles](https://docs.cloudposse.com/docs/layers/identity/tutorials/how-to-create-a-delegated-role-for-assumption-by-one-or-more-pri): Learn how to delegate a new IAM role
- [How to Easily Switch IAM Roles Between Accounts](https://docs.cloudposse.com/docs/layers/identity/tutorials/how-to-easily-switch-aws-account-roles): Learn how to switch IAM roles to access accounts
- [How to Setup SAML Login to AWS from Office 365](https://docs.cloudposse.com/docs/layers/identity/tutorials/how-to-setup-saml-login-to-aws-from-office-365): import Intro from '@site/src/components/Intro';
- [How to Setup Leapp on Windows with WSL](https://docs.cloudposse.com/docs/layers/identity/tutorials/leapp/how-to-setup-windows): You want to set up local AWS credentials but the primary documentation refers to MacOS and Homebrew. Leapp and Geodesic
- [How to Use Leapp to Authenticate with AWS](https://docs.cloudposse.com/docs/layers/identity/tutorials/leapp/leapp): Learn how to use Leapp to supply AWS credentials to tools used within Geodesic.
- [Tutorials](https://docs.cloudposse.com/docs/layers/identity/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [How to Monitor Everything with Datadog](https://docs.cloudposse.com/docs/layers/monitoring/datadog/datadog): Monitor everything with Datadog
- [Setup Datadog](https://docs.cloudposse.com/docs/layers/monitoring/datadog/setup): Provision Datadog monitoring with Terraform
- [Datadog Log Filtering](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/datadog-log-filtering): import Intro from '@site/src/components/Intro';
- [How to create a Synthetic and SLO](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-create-a-synthetic-and-slo): import Intro from '@site/src/components/Intro';
- [How to Monitor a new Service](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-monitor-a-new-service): import Intro from '@site/src/components/Intro';
- [How to Pass Tags Along to Datadog](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-pass-tags-along-to-datadog): import Intro from '@site/src/components/Intro';
- [How to Provision and Tune Datadog Monitors by Stage](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-provision-and-tune-datadog-monitors-by-stage): import Intro from '@site/src/components/Intro';
- [How to Setup Datadog Cluster Checks and Network Monitors for External URLs of Applications](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-setup-datadog-cluster-checks-and-network-monitors-for-ext): import Intro from '@site/src/components/Intro';
- [How to Sign Up for Datadog?](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-sign-up-for-datadog): import Intro from '@site/src/components/Intro';
- [How to use Datadog Metrics for Horizontal Pod Autoscaling (HPA)](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/how-to-use-datadog-metrics-for-horizontal-pod-autoscaling-hpa): import Intro from '@site/src/components/Intro';
- [Tutorials](https://docs.cloudposse.com/docs/layers/monitoring/datadog/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Decide on Datadog Account Strategy](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-datadog-account-strategy): Decide on how to structure Datadog accounts
- [Decide on Datadog Log Forwarding Requirements](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-datadog-log-forwarding-requirements): Decide what logs should forward to Datadog
- [Decide on Datadog Private Locations](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-datadog-private-locations): Decide whether to use Datadog Private Locations
- [Decide on External Monitoring Solution](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-external-monitoring-solution): Decide how to monitor for external reachability
- [Decide on How to Restrict Access to Metrics and Logs in Datadog](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-how-to-restrict-access-to-metrics-and-logs-in-datadog): Decide on ACLs for logs and metrics
- [Decide on whether to use Datadog roles](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/decide-on-whether-to-use-datadog-roles): Decide on the roles to use in Datadog
- [Design Decisions](https://docs.cloudposse.com/docs/layers/monitoring/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [Monitoring FAQ](https://docs.cloudposse.com/docs/layers/monitoring/faq): The easiest way to get started with an IaC monitor is to create it by hand in Datadog! While this may seem counterintuitive, seeing live graphs of ...
- [How to Setup Amazon Managed Grafana](https://docs.cloudposse.com/docs/layers/monitoring/grafana/grafana): import Intro from '@site/src/components/Intro';
- [Setup AWS Managed Grafana](https://docs.cloudposse.com/docs/layers/monitoring/grafana/setup): import Intro from '@site/src/components/Intro';
- [Implement Telemetry](https://docs.cloudposse.com/docs/layers/monitoring/monitoring): import Intro from '@site/src/components/Intro';
- [Accessing the Network](https://docs.cloudposse.com/docs/layers/network/access-network): import Intro from '@site/src/components/Intro';
- [Establish Connectivity with Transit Gateway](https://docs.cloudposse.com/docs/layers/network/connect-network): import Intro from '@site/src/components/Intro';
- [Deploying the Network](https://docs.cloudposse.com/docs/layers/network/deploy-vpcs): import Intro from '@site/src/components/Intro';
- [Decide on AWS Account VPC Subnet CIDR Strategy](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-aws-account-vpc-subnet-cidr-strategy): Decide the VPC CIDR ranges for AWS accounts
- [Decide on CIDR Allocations](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-cidr-allocation): Decide on CIDR blocks for VPCs and Subnets
- [Decide on Client VPN Options](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-client-vpn-options): Decide how to use AWS Client VPNs
- [Decide on Hostname Scheme for Service Discovery](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-hostname-scheme-for-service-discovery): Decide the hostname format for service discovery
- [Decide on How to Support TLS](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-how-to-support-tls): Decide on how to support TLS in your environment
- [Decide on IPv4 and IPv6 support](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-ipv4-and-ipv6-support): Decide whether to support both IPv4 and IPv6
- [Decide on Opting Into Non-default Regions](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-opting-into-non-default-regions): Decide which non-default AWS regions to enable
- [Decide on Organization Supernet CIDR Ranges](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-organization-supernet-cidr-ranges): Choose the all-encompassing CIDR for the AWS organization
- [Decide on Primary AWS Region](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-primary-aws-region): Pick the primary AWS region to use for the company
- [Decide on Service Discovery Domain](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-service-discovery-domain): Decide the TLD to use for service discovery
- [Decide on Transit Gateway Requirements](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-transit-gateway-requirements): Decide how AWS Transit Gateway will be used
- [Decide on Vanity (Branded) Domains](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-vanity-branded-domain): Decide the vanity domains for your environments
- [Decide on VPC NAT Strategy](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-vpc-nat-strategy): Decide how to NAT traffic in your VPCs
- [Decide on VPC Network Traffic Isolation Policy](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-on-vpc-network-traffic-isolation-policy): Decide how network traffic is isolated with VPCs
- [Decide on VPC Peering Requirements (e.g. to Legacy Env)](https://docs.cloudposse.com/docs/layers/network/design-decisions/decide-vpc-peering-requirements-e-g-to-legacy-env): Decide how to connect VPCs in different accounts
- [Review Design Decisions](https://docs.cloudposse.com/docs/layers/network/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [Setting up DNS](https://docs.cloudposse.com/docs/layers/network/dns-setup): import Note from '@site/src/components/Note';
- [FAQ](https://docs.cloudposse.com/docs/layers/network/faq): import Intro from '@site/src/components/Intro';
- [Network and DNS](https://docs.cloudposse.com/docs/layers/network/network): Build a robust, scalable AWS Network and DNS architectures
- [Monitor Everything](https://docs.cloudposse.com/docs/layers/observability): import Intro from '@site/src/components/Intro';
- [Set Up Your Platform](https://docs.cloudposse.com/docs/layers/platform): import Intro from '@site/src/components/Intro';
- [Creating an Infrastructure repository](https://docs.cloudposse.com/docs/layers/project/create-repository): Create and configure a GitHub repository for infrastructure
- [Decide on 1Password Strategy](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-1password-strategy): Review password strategy for engagements with Cloud Posse
- [Decide on ECR Strategy](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-ecr-strategy): Decide how you'll use ECR for storing docker images
- [Decide on Infrastructure Repository Name](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-infrastructure-repository-name): Decide on where to keep your infrastructure code
- [Decide on Namespace Abbreviation](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-namespace-abbreviation): Pick a concise prefix for all cloud resource names
- [Decide on Regional Naming Scheme](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-regional-naming-scheme): Decide on a regional naming scheme for resources
- [Decide on Secrets Placement for Terraform](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-secrets-management-placement): Decide where to store secrets used by Terraform
- [Decide on Secrets Management Strategy for Terraform](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-secrets-management-strategy-for-terraform): Decide how to manage secrets used by Terraform
- [Decide on Terraform Version](https://docs.cloudposse.com/docs/layers/project/design-decisions/decide-on-terraform-version): Choose Terraform version for compatibility and consistency
- [Foundational Design Decisions](https://docs.cloudposse.com/docs/layers/project/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [Getting Started](https://docs.cloudposse.com/docs/layers/project/project): import Intro from '@site/src/components/Intro';
- [Prepare the Toolbox Image](https://docs.cloudposse.com/docs/layers/project/toolbox): Prepare the toolbox image for Atmos and Terraform
- [Getting started with Geodesic v4](https://docs.cloudposse.com/docs/layers/project/tutorials/geodesic-getting-started): Learn what Geodesic is and how you can start using it to simplify your local infrastructure development.
- [Poly-Repo Strategy with account-map](https://docs.cloudposse.com/docs/layers/project/tutorials/poly-repo-strategy): Learn how to manage multiple repositories with Terraform and Atmos while using account-map for dynamic role selection
- [Tutorials](https://docs.cloudposse.com/docs/layers/project/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Decide on Infrastructure & Software Static Analysis Tools](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-infrastructure-software-static-analysis-tools): Decide on Infrastructure & Software Static Analysis Tools
- [Decide on Kubernetes Platform Compliance Strategy](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-kubernetes-platform-compliance-strategy): Decide on a strategy for CIS Compliance/hardening on EKS
- [Decide on Log Retention and Durability Architecture](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-log-retention-and-durability-architecture): Decide on log retention requirements
- [Decide on Strategy for Hardened Base AMIs](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-strategy-for-hardened-base-amis): Decide on how to harden base AMIs
- [Decide on a Technical Benchmark Framework for Compliance](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-technical-benchmark-framework): Decide on a technical benchmark framework for compliance
- [Decide on WAF Requirements/Strategy](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/decide-on-waf-requirements-strategy): Decide on WAF requirements and strategy
- [Design Decisions](https://docs.cloudposse.com/docs/layers/security-and-compliance/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [FAQ](https://docs.cloudposse.com/docs/layers/security-and-compliance/faq): ```bash
- [Security and Compliance](https://docs.cloudposse.com/docs/layers/security-and-compliance/security-and-compliance): import Intro from '@site/src/components/Intro';
- [Setup Security and Compliance](https://docs.cloudposse.com/docs/layers/security-and-compliance/setup): import Intro from '@site/src/components/Intro';
- [Enable GuardDuty for EKS Protection](https://docs.cloudposse.com/docs/layers/security-and-compliance/tutorials/enable-guardduty-for-eks-protection): Learn how to enable GuardDuty for EKS Protection
- [Tutorials](https://docs.cloudposse.com/docs/layers/security-and-compliance/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Decide How to distribute Docker Images](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-how-to-distribute-docker-images): Choose the right method to distribute Docker images
- [Decide on Argo CD Architecture](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-argocd-architecture): Considerations for deploying Argo CD
- [Decide on ArgoCD Deployment Repo Architecture](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-argocd-deployment-repo-architecture): Structure for Argo CD deployment repositories
- [Decide on Branching Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-branching-strategy): Branching strategies for your software delivery
- [Decide on Customer Apps for Migration](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-customer-apps-for-migration): Identify applications that should migrate to the new platform
- [Decide on Database Seeding Strategy for Ephemeral Preview Environments](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-database-seeding-strategy-for-ephemeral-preview-enviro): What data should be used in preview environments
- [Decide on GitHub Actions Workflow Organization Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-github-actions-workflow-organization-strategy): Decide where GitHub Actions workflows are kept
- [Decide on Hot-fix or Rollback Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-hot-fix-or-rollback-strategy): Decide how to revert changes
- [Decide on how ECS apps are deployed](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-how-ecs-apps-are-deployed): Decide how to deploy applications to ECS
- [Decide on Kubernetes Application Artifacts](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-kubernetes-application-artifacts): How to package and deploy applications to Kubernetes
- [Decide on Maintenance Page Solution](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-maintenance-page-solution): Decide how to deliver maintenance pages
- [Decide on Pipeline Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-pipeline-strategy): Decide what CI/CD pipelines are needed to deliver your software
- [Decide on Release Engineering Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-release-engineering-strategy): Decide on how to release software changes to production
- [Decide on Release Promotion Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-release-promotion-strategy): Decide how releases are promoted from dev to production
- [Decide on Repositories Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-repositories-strategy): Decide whether to use monorepos or polyrepos
- [Decide on Seeding Strategy for Staging Environments](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-seeding-strategy-for-staging-environments): Decide what data belongs in Staging
- [Decide on Self-Hosted GitHub Runner Strategy](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-self-hosted-github-runner-strategy): Decide on how to self-host GitHub Runners
- [Decide on Strategy for Continuous Integration](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-strategy-for-continuous-integration): Decide on what happens during the CI process
- [Decide on Strategy for Developer Environments](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-strategy-for-developer-environments): Decide on how developers will work with the application locally
- [Decide on Strategy for Managing and Orchestrating Secrets](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-strategy-for-managing-and-orchestrating-secrets): How to manage and orchestrate secrets for your applications
- [Decide on Strategy for Preview Environments (e.g. Review Apps)](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-strategy-for-preview-environments-e-g-review-apps): Decide how preview environments will work
- [Decide on Terraform Configuration Pattern for Application Repositories](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/decide-on-terraform-configuration-pattern-for-application-reposi): Decide how to configure applications
- [Design Decisions](https://docs.cloudposse.com/docs/layers/software-delivery/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [ECS with ecspresso](https://docs.cloudposse.com/docs/layers/software-delivery/ecs-ecspresso/ecs-ecspresso): import Intro from '@site/src/components/Intro';
- [ECS Partial Task Definitions](https://docs.cloudposse.com/docs/layers/software-delivery/ecs-ecspresso/ecs-partial-task-definitions): import Intro from '@site/src/components/Intro';
- [Setting up ecspresso](https://docs.cloudposse.com/docs/layers/software-delivery/ecs-ecspresso/setup): import Intro from '@site/src/components/Intro';
- [EKS with ArgoCD](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/eks-argocd): import Intro from '@site/src/components/Intro';
- [Setup Argo CD](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/setup): Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
- [How to set up Authorization for Argo CD with GitHub Apps](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/tutorials/github-apps): import Admonition from '@theme/Admonition'
- [How to setup Synchronous Notifications for Argo CD with GitHub Commit Statuses](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/tutorials/github-commit-notifications): Setup Synchronous Notifications for Argo CD with GitHub Commit Statuses
- [How to create an AWS Identity Center Application for ArgoCD](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/tutorials/identity-center-apps): import Intro from '@site/src/components/Intro';
- [How to set up Authorization for ArgoCD with GitHub PATs](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/tutorials/pats): import Intro from '@site/src/components/Intro';
- [Tutorials](https://docs.cloudposse.com/docs/layers/software-delivery/eks-argocd/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Implementing CI/CD](https://docs.cloudposse.com/docs/layers/software-delivery/fundamentals): Get started with Cloud Posse's Release Engineering.
- [Lambda with GitHub Workflows](https://docs.cloudposse.com/docs/layers/software-delivery/lambda/lambda): Deploy a Lambda functions using GitHub Workflows.
- [Software Delivery](https://docs.cloudposse.com/docs/layers/software-delivery/software-delivery): import Intro from '@site/src/components/Intro';
- [How to Create a Migration Checklist](https://docs.cloudposse.com/docs/layers/software-delivery/tutorials/how-to-create-a-migration-checklist): Learn how to create a migration checklist
- [Tutorials](https://docs.cloudposse.com/docs/layers/software-delivery/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [Component Development](https://docs.cloudposse.com/docs/learn/component-development/component-development): import Intro from '@site/src/components/Intro';
- [Exercises](https://docs.cloudposse.com/docs/learn/component-development/exercises): import Intro from '@site/src/components/Intro';
- [Frequently Asked Questions](https://docs.cloudposse.com/docs/learn/component-development/faq): Developing a new component may be necessary when:
- [Count vs For Each](https://docs.cloudposse.com/docs/learn/component-development/terraform-in-depth/terraform-count-vs-for-each): When to use count and when to use for_each in Terraform
- [Terraform in Depth](https://docs.cloudposse.com/docs/learn/component-development/terraform-in-depth/terraform-in-depth): Deep dive into Terraform implementation details and pitfalls
- [Error: Values Cannot Be Determined Until Apply](https://docs.cloudposse.com/docs/learn/component-development/terraform-in-depth/terraform-unknown-at-plan-time): Details about computed values can cause `terraform plan` to fail
- [Learn the Concepts](https://docs.cloudposse.com/docs/learn/concepts): import Intro from '@site/src/components/Intro';
- [Conventions](https://docs.cloudposse.com/docs/learn/conventions): import Intro from '@site/src/components/Intro';
- [Upgrade & Maintain](https://docs.cloudposse.com/docs/learn/maintenance/maintenance): import Intro from '@site/src/components/Intro';
- [Customize the Geodesic Shell](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-customize-the-geodesic-shell): Learn how to customize the Geodesic shell at launch time
- [How to Define Stacks for Multiple Regions?](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-define-stacks-for-multiple-regions): How to define stacks for multiple regions
- [How to Document a New Design Decision](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-document-a-new-design-decision): Learn how to document a new design decision
- [How to Load Test in AWS](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-load-test-in-aws): Learn how to load test in AWS
- [How to Manage Terraform Dependencies in Micro-service Repositories](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-manage-terraform-dependencies-in-micro-service-repositori): Manage Terraform dependencies in micro-service repositories
- [How to rollback Terraform state for a component](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-rollback-terraform-state-for-a-component-rollback-terraform): Learn how to Rollback Terraform State to a previous version
- [How to Rotate Kops Master Node Certificates](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-rotate-kops-master-node-certificates): How to Rotate Kops Master Node Certificates
- [How to run Docker-in-Docker with Geodesic?](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-run-docker-in-docker-with-geodesic): Learn how to run Docker-in-Docker with Geodesic
- [How to support GovCloud and Other AWS Partitions with Terraform](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-support-govcloud-and-other-aws-partitions-with-terraform): Some tips for GovCloud and other AWS partitions with Terraform
- [How to Switch Versions of Terraform](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-switch-versions-of-terraform): Learn how to switch versions of Terraform
- [How to terraform non-AWS infrastructure?](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-terraform-non-aws-infrastructure): Learn how to Terraform non-AWS infrastructure
- [How to update components.yaml to new organization](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-update-components-yaml-to-new-organization): Learn how to update component.yaml references to a new organization components repos
- [How to Use Atmos with Existing Terraform](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-use-atmos-with-existing-terraform): How to use Atmos with existing Terraform
- [How to use Atmos](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-use-atmos): Learn how to use Atmos
- [How to Use Imports and Catalogs in Stacks](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-use-imports-and-catalogs-in-stacks): Learn how to use imports and catalogs in stacks
- [How to Use Terraform Remote State](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-use-terraform-remote-state): Learn how to use Terraform Remote State
- [How to Version Pin Components in Stack Configurations](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-version-pin-components-in-stack-configurations): Learn how to version pin components in stack configurations
- [How to write ADRs](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/how-to-write-adrs): Learn how to write Architectural Design Records (ADRs)
- [Tutorials](https://docs.cloudposse.com/docs/learn/maintenance/tutorials/tutorials): import DocCardList from '@theme/DocCardList';
- [How to Keep Everything Up to Date](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-keep-everything-up-to-date): Tricks for keeping your infrastructure up to date
- [How to Move `atmos-gitops-config.yaml` to `atmos.yaml`](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-migrate-gitops-config-into-atmos-yaml): Migrate guide for v1 to v2 GitOps configuration
- [How to Upgrade Atmos](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-upgrade-atmos): Upgrade guides for Atmos to the latest version
- [How to Upgrade EKS Cluster Addons](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-upgrade-eks-cluster-addons): Learn how to upgrade EKS cluster addons
- [How to Upgrade EKS](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-upgrade-eks): Learn how to upgrade EKS clusters
- [How to Upgrade or Install Versions of Terraform](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/how-to-upgrade-or-install-versions-of-terraform): Learn how to install or upgrade to a specific version of terraform
- [Upgrades](https://docs.cloudposse.com/docs/learn/maintenance/upgrades/upgrades): import Intro from '@site/src/components/Intro';
- [Onboarding as a New Developer](https://docs.cloudposse.com/docs/learn/onboarding): Onboarding New Developers
- [Prerequisites](https://docs.cloudposse.com/docs/learn/prerequisites): import Intro from '@site/src/components/Intro';
- [Docker Tips & Tricks](https://docs.cloudposse.com/docs/learn/tips-and-tricks/docker): Collection of some nice little hacks for docker.
- [GitHub Actions Tips & Tricks](https://docs.cloudposse.com/docs/learn/tips-and-tricks/github-actions): Tricks for working with GitHub Actions
- [Terraform Tips & Tricks](https://docs.cloudposse.com/docs/learn/tips-and-tricks/terraform): Some helpful hints for Terraform
- [Tips and Tricks](https://docs.cloudposse.com/docs/learn/tips-and-tricks/tips-and-tricks): Cloud Posse's Tips and Tricks
- [Toolchain](https://docs.cloudposse.com/docs/learn/toolchain): Learn the tools that help you manage your infrastructure as code.
- [Artifactory](https://docs.cloudposse.com/docs/modules/library/artifactory/artifactory): Manage Artifactory integrations with Terraform.
- [kv-store](https://docs.cloudposse.com/docs/modules/library/artifactory/kv-store/README): This module is a key/value store for storing configuration data that should be shared among terraform root
- [acm-request-certificate](https://docs.cloudposse.com/docs/modules/library/aws/acm-request-certificate/README): Terraform module to request an ACM certificate for a domain and add a CNAME record to the DNS zone to complete certificate validation
- [alb](https://docs.cloudposse.com/docs/modules/library/aws/alb/README): Terraform module to create an ALB, default ALB listener(s), and a default ALB target and related security groups.
- [alb-ingress](https://docs.cloudposse.com/docs/modules/library/aws/alb-ingress/README): Terraform module to provision an HTTP style ALB ingress based on hostname and/or path.
- [alb-target-group-cloudwatch-sns-alarms](https://docs.cloudposse.com/docs/modules/library/aws/alb-target-group-cloudwatch-sns-alarms/README): Terraform module for creating alarms for tracking important changes and occurrences from ALBs.
- [amplify-app](https://docs.cloudposse.com/docs/modules/library/aws/amplify-app/README): Terraform module to provision AWS Amplify apps, backend environments, branches, domain associations, and webhooks. 
- [api-gateway](https://docs.cloudposse.com/docs/modules/library/aws/api-gateway/README): Terraform module to provision API Gatway resources.
- [account-settings](https://docs.cloudposse.com/docs/modules/library/aws/api-gateway/modules/account-settings/README): account-settings
- [athena](https://docs.cloudposse.com/docs/modules/library/aws/athena/README): Terraform module to deploy an instance of [Amazon Athena](https://aws.amazon.com/athena/) on AWS.
- [AWS](https://docs.cloudposse.com/docs/modules/library/aws/aws): AWS resources management with Terraform.
- [backup](https://docs.cloudposse.com/docs/modules/library/aws/backup/README): Terraform module to provision [AWS Backup](https://aws.amazon.com/backup), a fully managed backup service that makes it easy to centralize and auto...
- [budgets](https://docs.cloudposse.com/docs/modules/library/aws/budgets/README): Terraform module to create [AWS Budgets](https://docs.aws.amazon.com/cost-management/latest/userguide/budgets-managing-costs.html) and an associate...
- [cicd](https://docs.cloudposse.com/docs/modules/library/aws/cicd/README): Terraform module to create AWS [`CodePipeline`](https://aws.amazon.com/codepipeline/) with [`CodeBuild`](https://aws.amazon.com/codebuild/) for [`C...
- [cloudformation-stack](https://docs.cloudposse.com/docs/modules/library/aws/cloudformation-stack/README): Terraform module to provision CloudFormation Stack.
- [cloudformation-stack-set](https://docs.cloudposse.com/docs/modules/library/aws/cloudformation-stack-set/README): Terraform module to provision Cloudformation Stack Set and Administrator IAM role.
- [cloudfront-cdn](https://docs.cloudposse.com/docs/modules/library/aws/cloudfront-cdn/README): Terraform Module that implements a CloudFront Distribution (CDN) for a custom origin (e.g. website) and [ships logs to a bucket](https://github.com...
- [cloudfront-s3-cdn](https://docs.cloudposse.com/docs/modules/library/aws/cloudfront-s3-cdn/README): Terraform module to provision an AWS CloudFront CDN with an S3 origin.
- [Lambda@Edge](https://docs.cloudposse.com/docs/modules/library/aws/cloudfront-s3-cdn/modules/lambda@edge/README): Submodule which creates Lambda@Edge functions to associate with the CloudFront distribution in the parent module.
- [cloudtrail](https://docs.cloudposse.com/docs/modules/library/aws/cloudtrail/README): Terraform module to provision an AWS [CloudTrail](https://aws.amazon.com/cloudtrail/).
- [cloudtrail-cloudwatch-alarms](https://docs.cloudposse.com/docs/modules/library/aws/cloudtrail-cloudwatch-alarms/README): Terraform module for creating alarms for tracking important changes and occurances from cloudtrail.
- [cloudtrail-s3-bucket](https://docs.cloudposse.com/docs/modules/library/aws/cloudtrail-s3-bucket/README): Terraform module to provision an S3 bucket with built in policy to allow [CloudTrail](https://aws.amazon.com/cloudtrail/) [logs](https://docs.aws.a...
- [cloudwatch-events](https://docs.cloudposse.com/docs/modules/library/aws/cloudwatch-events/README): This is `terraform-aws-cloudwatch-events` module that creates CloudWatch Events rules and according targets.
- [cloudwatch-flow-logs](https://docs.cloudposse.com/docs/modules/library/aws/cloudwatch-flow-logs/README): Terraform module for enabling [`flow logs`](http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/flow-logs.html) for `vpc` and `subnets`.
- [cloudwatch-logs](https://docs.cloudposse.com/docs/modules/library/aws/cloudwatch-logs/README): Terraform module for creation of CloudWatch Log Streams and Log Groups. Useful in combination with Fluentd/Fluent-bit for shipping logs.
- [code-deploy](https://docs.cloudposse.com/docs/modules/library/aws/code-deploy/README): Terraform module to provision AWS Code Deploy app and group.
- [codebuild](https://docs.cloudposse.com/docs/modules/library/aws/codebuild/README): Terraform module to create AWS CodeBuild project for AWS CodePipeline.
- [config](https://docs.cloudposse.com/docs/modules/library/aws/config/README): This module enables [AWS Config](https://aws.amazon.com/config/) and optionally sets up an SNS topic to receive notifications of its findings.
- [cis-1-2-rules](https://docs.cloudposse.com/docs/modules/library/aws/config/modules/cis-1-2-rules/README): cis-1-2-rules
- [conformance-pack](https://docs.cloudposse.com/docs/modules/library/aws/config/modules/conformance-pack/README): conformance-pack
- [config-storage](https://docs.cloudposse.com/docs/modules/library/aws/config-storage/README): This module creates an S3 bucket suitable for storing `AWS Config` data.
- [datadog-integration](https://docs.cloudposse.com/docs/modules/library/aws/datadog-integration/README): Terraform module to configure [Datadog AWS integration](https://docs.datadoghq.com/api/v1/aws-integration/).
- [datadog-lambda-forwarder](https://docs.cloudposse.com/docs/modules/library/aws/datadog-lambda-forwarder/README): Terraform module to provision all the necessary infrastructure to deploy [Datadog Lambda forwarders](https://github.com/DataDog/datadog-serverless-...
- [dms](https://docs.cloudposse.com/docs/modules/library/aws/dms/README): Terraform modules for provisioning and managing AWS [DMS](https://aws.amazon.com/dms/) resources. 
- [dms-endpoint](https://docs.cloudposse.com/docs/modules/library/aws/dms/modules/dms-endpoint/README): dms-endpoint
- [dms-event-subscription](https://docs.cloudposse.com/docs/modules/library/aws/dms/modules/dms-event-subscription/README): dms-event-subscription
- [dms-iam](https://docs.cloudposse.com/docs/modules/library/aws/dms/modules/dms-iam/README): dms-iam
- [dms-replication-instance](https://docs.cloudposse.com/docs/modules/library/aws/dms/modules/dms-replication-instance/README): dms-replication-instance
- [dms-replication-task](https://docs.cloudposse.com/docs/modules/library/aws/dms/modules/dms-replication-task/README): dms-replication-task
- [documentdb-cluster](https://docs.cloudposse.com/docs/modules/library/aws/documentdb-cluster/README): Terraform module to provision an [`Amazon DocumentDB`](https://aws.amazon.com/documentdb/) cluster.
- [dynamic-subnets](https://docs.cloudposse.com/docs/modules/library/aws/dynamic-subnets/README): Terraform module to provision public and private [`subnets`](https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html) in an existin...
- [dynamodb](https://docs.cloudposse.com/docs/modules/library/aws/dynamodb/README): Terraform module to provision a DynamoDB table with autoscaling.
- [dynamodb-autoscaler](https://docs.cloudposse.com/docs/modules/library/aws/dynamodb-autoscaler/README): Terraform module to provision DynamoDB autoscaler.
- [ec2-admin-server](https://docs.cloudposse.com/docs/modules/library/aws/ec2-admin-server/README): Terraform Module for providing a server capable of running admin tasks. Use `terraform-aws-ec2-admin-server` to create and manage an admin instance.
- [ec2-ami-backup](https://docs.cloudposse.com/docs/modules/library/aws/ec2-ami-backup/README): This repo contains a terraform module that creates two lambda functions
- [ec2-ami-snapshot](https://docs.cloudposse.com/docs/modules/library/aws/ec2-ami-snapshot/README): Terraform module to easily generate AMI snapshots to create replica instances
- [ec2-autoscale-group](https://docs.cloudposse.com/docs/modules/library/aws/ec2-autoscale-group/README): Terraform module to provision [Auto Scaling Group](https://www.terraform.io/docs/providers/aws/r/autoscaling_group.html) and [Launch Template](http...
- [ec2-bastion-server](https://docs.cloudposse.com/docs/modules/library/aws/ec2-bastion-server/README): Terraform module to define a generic Bastion host with parameterized `user_data` and support for AWS SSM Session Manager for remote access with IAM...
- [ec2-client-vpn](https://docs.cloudposse.com/docs/modules/library/aws/ec2-client-vpn/README): The `terraform-aws-ec2-client-vpn` project provides for ec2 client vpn infrastructure. AWS Client VPN is a managed client-based VPN service based o...
- [ec2-instance](https://docs.cloudposse.com/docs/modules/library/aws/ec2-instance/README): Terraform Module for provisioning a general purpose EC2 host.
- [ec2-instance-group](https://docs.cloudposse.com/docs/modules/library/aws/ec2-instance-group/README): Terraform Module for providing N general purpose EC2 hosts.
- [ecr](https://docs.cloudposse.com/docs/modules/library/aws/ecr/README): Terraform module to provision an [`AWS ECR Docker Container registry`](https://aws.amazon.com/ecr/).
- [ecr-public](https://docs.cloudposse.com/docs/modules/library/aws/ecr-public/README): Terraform module to provision a Public [`AWS ECR Docker Container registry`](https://docs.aws.amazon.com/AmazonECR/latest/public/public-repositorie...
- [ecs-alb-service-task](https://docs.cloudposse.com/docs/modules/library/aws/ecs-alb-service-task/README): Terraform module to create an ECS Service for a web app (task), and an ALB target group to route requests.
- [ecs-cloudwatch-autoscaling](https://docs.cloudposse.com/docs/modules/library/aws/ecs-cloudwatch-autoscaling/README): Terraform module for creating alarms for tracking important changes and occurrences from ECS Services.
- [ecs-cloudwatch-sns-alarms](https://docs.cloudposse.com/docs/modules/library/aws/ecs-cloudwatch-sns-alarms/README): Terraform module for creating alarms for tracking important changes and occurrences from ECS Services.
- [ecs-cluster](https://docs.cloudposse.com/docs/modules/library/aws/ecs-cluster/README): Terraform module to provision an [`ECS Cluster`](https://aws.amazon.com/ru/ecs/) with list of
- [ecs-codepipeline](https://docs.cloudposse.com/docs/modules/library/aws/ecs-codepipeline/README): Terraform Module for CI/CD with AWS Code Pipeline using GitHub webhook triggers and Code Build for ECS.
- [ecs-container-definition](https://docs.cloudposse.com/docs/modules/library/aws/ecs-container-definition/README): Terraform module to generate well-formed JSON documents that are passed to the `aws_ecs_task_definition` Terraform resource as [container definitio...
- [ecs-web-app](https://docs.cloudposse.com/docs/modules/library/aws/ecs-web-app/README): A Terraform module which implements a web app on ECS and supporting AWS resources.
- [efs](https://docs.cloudposse.com/docs/modules/library/aws/efs/README): Terraform module to provision an AWS [`EFS`](https://aws.amazon.com/efs/) Network File System.
- [efs-backup](https://docs.cloudposse.com/docs/modules/library/aws/efs-backup/README): Terraform module designed to easily backup EFS filesystems to S3 using DataPipeline.
- [efs-cloudwatch-sns-alarms](https://docs.cloudposse.com/docs/modules/library/aws/efs-cloudwatch-sns-alarms/README): Create a set of sane EFS CloudWatch alerts for monitoring the health of an EFS resource.
- [eks-cluster](https://docs.cloudposse.com/docs/modules/library/aws/eks-cluster/README): Terraform module to provision an [EKS](https://aws.amazon.com/eks/) cluster on AWS.
- [eks-fargate-profile](https://docs.cloudposse.com/docs/modules/library/aws/eks-fargate-profile/README): Terraform module to provision an [AWS Fargate Profile](https://docs.aws.amazon.com/eks/latest/userguide/fargate-profile.html) 
- [eks-iam-role](https://docs.cloudposse.com/docs/modules/library/aws/eks-iam-role/README): This `terraform-aws-eks-iam-role` project provides a simplified mechanism for provisioning
- [eks-node-group](https://docs.cloudposse.com/docs/modules/library/aws/eks-node-group/README): Terraform module to provision an EKS Managed Node Group for [Elastic Kubernetes Service](https://aws.amazon.com/eks/).
- [eks-workers](https://docs.cloudposse.com/docs/modules/library/aws/eks-workers/README): Terraform module to provision AWS resources to run EC2 worker nodes for [Elastic Kubernetes Service](https://aws.amazon.com/eks/).
- [elastic-beanstalk-application](https://docs.cloudposse.com/docs/modules/library/aws/elastic-beanstalk-application/README): Terraform module to provision AWS Elastic Beanstalk application
- [elastic-beanstalk-environment](https://docs.cloudposse.com/docs/modules/library/aws/elastic-beanstalk-environment/README): Terraform module to provision AWS Elastic Beanstalk environment
- [elasticache-memcached](https://docs.cloudposse.com/docs/modules/library/aws/elasticache-memcached/README): Terraform module to provision an [`ElastiCache`](https://aws.amazon.com/elasticache/) Memcached Cluster
- [elasticache-redis](https://docs.cloudposse.com/docs/modules/library/aws/elasticache-redis/README): Terraform module to provision an [`ElastiCache`](https://aws.amazon.com/elasticache/) Redis Cluster or Serverless instance.
- [elasticsearch](https://docs.cloudposse.com/docs/modules/library/aws/elasticsearch/README): Terraform module to provision an [`Elasticsearch`](https://aws.amazon.com/elasticsearch-service/) cluster with built-in integrations with [Kibana](...
- [emr-cluster](https://docs.cloudposse.com/docs/modules/library/aws/emr-cluster/README): Terraform module to provision an Elastic MapReduce (EMR) cluster on AWS.
- [firewall-manager](https://docs.cloudposse.com/docs/modules/library/aws/firewall-manager/README): Terraform module to create and manage AWS Firewall Manager policies.
- [github-action-token-rotator](https://docs.cloudposse.com/docs/modules/library/aws/github-action-token-rotator/README): This module deploys a [lambda function](https://github.com/cloudposse/lambda-github-action-token-rotator) that runs as 
- [global-accelerator](https://docs.cloudposse.com/docs/modules/library/aws/global-accelerator/README): This module provisions AWS Global Accelerator. Multiple listeners can be specified when instantiating this module.
- [endpoint-group](https://docs.cloudposse.com/docs/modules/library/aws/global-accelerator/modules/endpoint-group/README): endpoint-group
- [glue](https://docs.cloudposse.com/docs/modules/library/aws/glue/README): Terraform modules for provisioning and managing AWS [Glue](https://docs.aws.amazon.com/glue/latest/dg/what-is-glue.html) resources. 
- [glue-catalog-database](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-catalog-database/README): glue-catalog-database
- [glue-catalog-table](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-catalog-table/README): glue-catalog-table
- [glue-connection](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-connection/README): glue-connection
- [glue-crawler](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-crawler/README): glue-crawler
- [glue-job](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-job/README): glue-job
- [glue-registry](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-registry/README): glue-registry
- [glue-schema](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-schema/README): glue-schema
- [glue-trigger](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-trigger/README): glue-trigger
- [glue-workflow](https://docs.cloudposse.com/docs/modules/library/aws/glue/modules/glue-workflow/README): glue-workflow
- [guardduty](https://docs.cloudposse.com/docs/modules/library/aws/guardduty/README): This module enables AWS GuardDuty in one region of one account and optionally sets up an SNS topic to receive 
- [health-events](https://docs.cloudposse.com/docs/modules/library/aws/health-events/README): This module creates EventBridge (formerly CloudWatch Events) rules for AWS Personal Health Dashboard Events and an SNS topic. EventBridge will publ...
- [helm-release](https://docs.cloudposse.com/docs/modules/library/aws/helm-release/README): This `terraform-aws-helm-release` module deploys a [Helm chart](https://helm.sh/docs/topics/charts/) with
- [iam-account-settings](https://docs.cloudposse.com/docs/modules/library/aws/iam-account-settings/README): Terraform module to provision general IAM account settings. It will create the IAM account alias for pretty login URLs and set the account password...
- [iam-assumed-roles](https://docs.cloudposse.com/docs/modules/library/aws/iam-assumed-roles/README): Terraform module to provision two IAM roles and two IAM groups for assuming the roles provided MFA is present,
- [iam-policy](https://docs.cloudposse.com/docs/modules/library/aws/iam-policy/README): This `terraform-aws-iam-policy` module is a wrapper around the Terraform [aws_iam_policy_document](https://registry.terraform.io/providers/hashicor...
- [iam-role](https://docs.cloudposse.com/docs/modules/library/aws/iam-role/README): A Terraform module that creates IAM role with provided JSON IAM polices documents.
- [iam-s3-user](https://docs.cloudposse.com/docs/modules/library/aws/iam-s3-user/README): Terraform module to provision a basic IAM user with permissions to access S3 resources, 
- [iam-system-user](https://docs.cloudposse.com/docs/modules/library/aws/iam-system-user/README): Terraform Module to provision a basic IAM system user suitable for CI/CD Systems
- [iam-user](https://docs.cloudposse.com/docs/modules/library/aws/iam-user/README): Terraform Module to provision a basic IAM user suitable for humans. It will establish a login profile and associate the user with IAM groups. 
- [inspector](https://docs.cloudposse.com/docs/modules/library/aws/inspector/README): This module enables [AWS Inspector](https://aws.amazon.com/inspector/) in one region of one account and optionally 
- [key-pair](https://docs.cloudposse.com/docs/modules/library/aws/key-pair/README): Terraform module for generating or importing an SSH public key file into AWS.
- [kinesis-stream](https://docs.cloudposse.com/docs/modules/library/aws/kinesis-stream/README): Terraform module to deploy an [Amazon Kinesis Data Stream](https://aws.amazon.com/kinesis/data-streams/) on AWS.
- [kms-key](https://docs.cloudposse.com/docs/modules/library/aws/kms-key/README): Terraform module to provision a [KMS](https://aws.amazon.com/kms/) key with alias.
- [lakeformation](https://docs.cloudposse.com/docs/modules/library/aws/lakeformation/README): Terraform module to deploy an instance of [Amazon Lake Formation](https://aws.amazon.com/lake-formation/) on AWS.
- [lambda-elasticsearch-cleanup](https://docs.cloudposse.com/docs/modules/library/aws/lambda-elasticsearch-cleanup/README): Terraform module to provision a scheduled Lambda function which will
- [lambda-function](https://docs.cloudposse.com/docs/modules/library/aws/lambda-function/README): This module deploys an AWS Lambda function from a Zip file or from a Docker image. Additionally, it creates an IAM 
- [lb-s3-bucket](https://docs.cloudposse.com/docs/modules/library/aws/lb-s3-bucket/README): Terraform module to provision an S3 bucket with built in IAM policy to allow [AWS Load Balancers](https://aws.amazon.com/documentation/elastic-load...
- [macie](https://docs.cloudposse.com/docs/modules/library/aws/macie/README): Terraform module to provision [Amazon Macie](https://aws.amazon.com/macie/) - a fully managed data security and data privacy service that uses mach...
- [managed-grafana](https://docs.cloudposse.com/docs/modules/library/aws/managed-grafana/README): This module is responsible for provisioning an Amazon Managed Grafana workspace.
- [managed-prometheus](https://docs.cloudposse.com/docs/modules/library/aws/managed-prometheus/README): This module is responsible for provisioning a workspace for Amazon Managed Service for Prometheus, also known as Amazon Managed Prometheus (AMP).
- [memorydb](https://docs.cloudposse.com/docs/modules/library/aws/memorydb/README): This module allows an engineer to provision MemoryDB clusters along with an admin user, subnet group, and parameter group. MemoryDB is a real-time ...
- [mq-broker](https://docs.cloudposse.com/docs/modules/library/aws/mq-broker/README): Terraform module to provision AmazonMQ resources on AWS
- [msk-apache-kafka-cluster](https://docs.cloudposse.com/docs/modules/library/aws/msk-apache-kafka-cluster/README): Terraform module to provision [Amazon Managed Streaming](https://aws.amazon.com/msk/) for [Apache Kafka](https://aws.amazon.com/msk/what-is-kafka/)
- [multi-az-subnets](https://docs.cloudposse.com/docs/modules/library/aws/multi-az-subnets/README): Terraform module for multi-AZ [`subnets`](http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html) provisioning.
- [mwaa](https://docs.cloudposse.com/docs/modules/library/aws/mwaa/README): Terraform module to provision Amazon Managed Workflows for Apache Airflow
- [named-subnets](https://docs.cloudposse.com/docs/modules/library/aws/named-subnets/README): Terraform module for named [`subnets`](http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html) provisioning.
- [network-firewall](https://docs.cloudposse.com/docs/modules/library/aws/network-firewall/README): Terraform module to provision AWS Network Firewall resources.
- [nlb](https://docs.cloudposse.com/docs/modules/library/aws/nlb/README): Terraform module to create an NLB and a default NLB target and related security groups.
- [organization-access-group](https://docs.cloudposse.com/docs/modules/library/aws/organization-access-group/README): Terraform module to create an IAM Group and Policy to grant permissions to delegated IAM users in the Organization's master account to access a mem...
- [organization-access-role](https://docs.cloudposse.com/docs/modules/library/aws/organization-access-role/README): Terraform module to create an IAM Role to grant permissions to delegated IAM users in the master account to access an invited member account
- [rds](https://docs.cloudposse.com/docs/modules/library/aws/rds/README): Terraform module to provision AWS [`RDS`](https://aws.amazon.com/rds/) instances
- [rds-cloudwatch-sns-alarms](https://docs.cloudposse.com/docs/modules/library/aws/rds-cloudwatch-sns-alarms/README): Terraform module that configures important RDS alerts using CloudWatch and sends them to an SNS topic.
- [rds-cluster](https://docs.cloudposse.com/docs/modules/library/aws/rds-cluster/README): Terraform module to provision an [`RDS Aurora`](https://aws.amazon.com/rds/aurora) cluster for MySQL or Postgres.
- [rds-cluster-instance-group](https://docs.cloudposse.com/docs/modules/library/aws/rds-cluster-instance-group/README): Terraform module to provision an [`RDS Aurora`](https://aws.amazon.com/rds/aurora) instance group for MySQL or Postgres along with a dedicated endp...
- [rds-db-proxy](https://docs.cloudposse.com/docs/modules/library/aws/rds-db-proxy/README): Terraform module to provision an Amazon [RDS Proxy](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/rds-proxy.html) for MySQL or Postgres.
- [rds-replica](https://docs.cloudposse.com/docs/modules/library/aws/rds-replica/README): Terraform module to provision AWS [`RDS`](https://aws.amazon.com/rds/) replica instances. These are best suited for reporting purposes.
- [redshift-cluster](https://docs.cloudposse.com/docs/modules/library/aws/redshift-cluster/README): This is `terraform-example-module` project provides all the scaffolding for a typical well-built Cloud Posse module. It's a template repository you...
- [module](https://docs.cloudposse.com/docs/modules/library/aws/refarch-utils/README): This is an example project to provide all the scaffolding for a typical well-built Cloud Posse
- [route53-alias](https://docs.cloudposse.com/docs/modules/library/aws/route53-alias/README): Terraform module that implements "vanity" host names (e.g. `brand.com`) as `ALIAS` records to another Route53 DNS resource record (e.g. ELB/ALB, S3...
- [route53-cluster-hostname](https://docs.cloudposse.com/docs/modules/library/aws/route53-cluster-hostname/README): Terraform module to define a consistent AWS Route53 hostname
- [route53-cluster-zone](https://docs.cloudposse.com/docs/modules/library/aws/route53-cluster-zone/README): Terraform module to easily define consistent cluster domains on `Route53`.
- [route53-resolver-dns-firewall](https://docs.cloudposse.com/docs/modules/library/aws/route53-resolver-dns-firewall/README): Terraform module to provision Route 53 Resolver DNS Firewall, domain lists, firewall rules, rule groups, and logging configurations.
- [s3-bucket](https://docs.cloudposse.com/docs/modules/library/aws/s3-bucket/README): This module creates an S3 bucket with support for versioning, lifecycles, object locks, replication, encryption, ACL,
- [s3-log-storage](https://docs.cloudposse.com/docs/modules/library/aws/s3-log-storage/README): This module creates an S3 bucket suitable for receiving logs from other `AWS` services such as `S3`, `CloudFront`, and `CloudTrails`.
- [s3-website~~ OBSOLETE](https://docs.cloudposse.com/docs/modules/library/aws/s3-website/README)
- [security-group](https://docs.cloudposse.com/docs/modules/library/aws/security-group/README): Terraform module to create AWS Security Group and rules.
- [security-hub](https://docs.cloudposse.com/docs/modules/library/aws/security-hub/README): Terraform module to deploy [AWS Security Hub](https://aws.amazon.com/security-hub/).
- [control-disablements](https://docs.cloudposse.com/docs/modules/library/aws/security-hub/modules/control-disablements/README): control-disablements
- [service-control-policies](https://docs.cloudposse.com/docs/modules/library/aws/service-control-policies/README): Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts.
- [service-quotas](https://docs.cloudposse.com/docs/modules/library/aws/service-quotas/README): Terraform module to manage [AWS Service Quotas](https://docs.aws.amazon.com/servicequotas/latest/userguide/intro.html).
- [ses](https://docs.cloudposse.com/docs/modules/library/aws/ses/README): Terraform module to provision Simple Email Service on AWS.
- [ses-lambda-forwarder](https://docs.cloudposse.com/docs/modules/library/aws/ses-lambda-forwarder/README): This is a terraform module that creates an email forwarder using a combination of AWS SES and Lambda running the [aws-lambda-ses-forwarder](https:/...
- [sns-cloudwatch-sns-alarms](https://docs.cloudposse.com/docs/modules/library/aws/sns-cloudwatch-sns-alarms/README): Terraform module to provision CloudWatch alarms for SNS
- [sns-lambda-notify-slack](https://docs.cloudposse.com/docs/modules/library/aws/sns-lambda-notify-slack/README): Terraform module to provision a lambda function that subscribes to SNS and notifies to Slack.
- [sns-topic](https://docs.cloudposse.com/docs/modules/library/aws/sns-topic/README): Terraform module to provision SNS topic
- [ssm-iam-role](https://docs.cloudposse.com/docs/modules/library/aws/ssm-iam-role/README): Terraform module to provision an IAM role with configurable permissions to access [SSM Parameter Store](https://docs.aws.amazon.com/systems-manager...
- [ssm-parameter-chamber-reader](https://docs.cloudposse.com/docs/modules/library/aws/ssm-parameter-chamber-reader/README): Terraform module read ssm paramters managed with Chamber.
- [ssm-parameter-store](https://docs.cloudposse.com/docs/modules/library/aws/ssm-parameter-store/README): Terraform module for providing read and write access to the AWS SSM Parameter Store.
- [ssm-parameter-store-policy-documents](https://docs.cloudposse.com/docs/modules/library/aws/ssm-parameter-store-policy-documents/README): This module generates JSON documents for restricted permission sets for AWS SSM Parameter Store access.
- [ssm-patch-manager](https://docs.cloudposse.com/docs/modules/library/aws/ssm-patch-manager/README): This module provisions AWS SSM Patch manager maintenance window tasks, targets, patch baselines and patch groups and a s3 bucket for storing patch ...
- [ssm-tls-self-signed-cert](https://docs.cloudposse.com/docs/modules/library/aws/ssm-tls-self-signed-cert/README): This module creates a self-signed certificate and writes it alongside with its key to SSM Parameter Store (or alternatively AWS Secrets Manager).
- [ssm-tls-ssh-key-pair](https://docs.cloudposse.com/docs/modules/library/aws/ssm-tls-ssh-key-pair/README): Terraform module that provisions an SSH TLS key pair and writes it to SSM Parameter Store.
- [sso](https://docs.cloudposse.com/docs/modules/library/aws/sso/README): This module configures [AWS Single Sign-On (SSO)](https://aws.amazon.com/single-sign-on/). AWS SSO makes it easy to 
- [account-assignments](https://docs.cloudposse.com/docs/modules/library/aws/sso/modules/account-assignments/README): account-assignments
- [permission-sets](https://docs.cloudposse.com/docs/modules/library/aws/sso/modules/permission-sets/README): permission-sets
- [step-functions](https://docs.cloudposse.com/docs/modules/library/aws/step-functions/README): Terraform module to provision [AWS Step Functions](https://docs.aws.amazon.com/step-functions/latest/dg/welcome.html).
- [tfstate-backend](https://docs.cloudposse.com/docs/modules/library/aws/tfstate-backend/README): Terraform module to provision an S3 bucket to store `terraform.tfstate` file and a DynamoDB table to lock the state file
- [transfer-sftp](https://docs.cloudposse.com/docs/modules/library/aws/transfer-sftp/README): This is `terraform-aws-transfer-sftp` project provides all the scaffolding for a typical well-built Cloud Posse module. It's a template repository ...
- [transit-gateway](https://docs.cloudposse.com/docs/modules/library/aws/transit-gateway/README): Terraform module to provision:
- [utils](https://docs.cloudposse.com/docs/modules/library/aws/utils/README): This `terraform-aws-utils` module provides some simple utilities to use when working in AWS.
- [vpc](https://docs.cloudposse.com/docs/modules/library/aws/vpc/README): Terraform module to provision a VPC with Internet Gateway. Contains a submodule for provisioning Interface and/or Gateway VPC Endpoints.
- [vpc-endpoints](https://docs.cloudposse.com/docs/modules/library/aws/vpc/modules/vpc-endpoints/README): vpc-endpoints
- [vpc-flow-logs-s3-bucket](https://docs.cloudposse.com/docs/modules/library/aws/vpc-flow-logs-s3-bucket/README): Terraform module to create AWS [`VPC Flow logs`](https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs.html) backed by S3.
- [vpc-peering](https://docs.cloudposse.com/docs/modules/library/aws/vpc-peering/README): Terraform module to create a peering connection between two VPCs
- [vpc-peering-multi-account](https://docs.cloudposse.com/docs/modules/library/aws/vpc-peering-multi-account/README): Terraform module to create a peering connection between any two VPCs existing in different AWS accounts.
- [vpn-connection](https://docs.cloudposse.com/docs/modules/library/aws/vpn-connection/README): Terraform module to provision a [site-to-site](https://docs.aws.amazon.com/vpn/latest/s2svpn/VPC_VPN.html) [VPN connection](https://docs.aws.amazon...
- [waf](https://docs.cloudposse.com/docs/modules/library/aws/waf/README): Terraform module to create and manage AWS WAFv2 rules. 
- [Cloudflare](https://docs.cloudposse.com/docs/modules/library/cloudflare/cloudflare): Manage Cloudflare with Terraform.
- [waf-rulesets](https://docs.cloudposse.com/docs/modules/library/cloudflare/waf-rulesets/README): Terraform module to manage CloudFlare WAF rulesets.
- [zone](https://docs.cloudposse.com/docs/modules/library/cloudflare/zone/README): Terraform module to provision a CloudFlare zone with: DNS records, Argo, Firewall filters and rules.
- [Datadog](https://docs.cloudposse.com/docs/modules/library/datadog/datadog): Monitor resources using Datadog and Terraform.
- [platform](https://docs.cloudposse.com/docs/modules/library/datadog/platform/README): Terraform module to provision Datadog resources.
- [monitors](https://docs.cloudposse.com/docs/modules/library/datadog/platform/modules/monitors/README): monitors
- [slo](https://docs.cloudposse.com/docs/modules/library/datadog/platform/modules/slo/README): slo
- [synthetics](https://docs.cloudposse.com/docs/modules/library/datadog/platform/modules/synthetics/README): synthetics
- [Example](https://docs.cloudposse.com/docs/modules/library/example/example): Example modules for Terraform.
- [module](https://docs.cloudposse.com/docs/modules/library/example/module/README): Short
- [External](https://docs.cloudposse.com/docs/modules/library/external/external): Interact with external systems using Terraform.
- [module-artifact](https://docs.cloudposse.com/docs/modules/library/external/module-artifact/README): Terraform Module to fetch remote build artifacts via http(s) using `curl`.
- [GitHub](https://docs.cloudposse.com/docs/modules/library/github/github): Automate GitHub operations with Terraform.
- [repository](https://docs.cloudposse.com/docs/modules/library/github/repository/README): Terraform Module to provision a GitHub Repository with advanced settings.
- [repository-webhooks](https://docs.cloudposse.com/docs/modules/library/github/repository-webhooks/README): Terraform module to provision webhooks on a set of GitHub repositories.
- [Kubernetes](https://docs.cloudposse.com/docs/modules/library/kubernetes/kubernetes): Manage Kubernetes with Terraform.
- [Terraform Modules](https://docs.cloudposse.com/docs/modules/library/library): Terraform Module Library
- [Module](https://docs.cloudposse.com/docs/modules/library/module/module): Modular components for Terraform.
- [module](https://docs.cloudposse.com/docs/modules/library/module/test/README): This is an test project 33.  
- [label](https://docs.cloudposse.com/docs/modules/library/null/label/README): Terraform module designed to generate consistent names and tags for resources. Use `terraform-null-label` to implement a strict naming convention.
- [Null](https://docs.cloudposse.com/docs/modules/library/null/null): Utility modules using Terraform's null provider.
- [incident-management](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/README): Terraform module to provision Opsgenie resources using the Opsgenie provider. The provider needs to be configured with the proper credentials befor...
- [alert_policy](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/alert_policy/README): alert_policy
- [api_integration](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/api_integration/README): api_integration
- [config](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/config/README): config
- [escalation](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/escalation/README): escalation
- [integration_action](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/integration_action/README): integration_action
- [notification_policy](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/notification_policy/README): notification_policy
- [schedule](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/schedule/README): schedule
- [service](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/service/README): service
- [service_incident_rule](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/service_incident_rule/README): service_incident_rule
- [team](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/team/README): team
- [team_routing_rule](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/team_routing_rule/README): team_routing_rule
- [user](https://docs.cloudposse.com/docs/modules/library/opsgenie/incident-management/modules/user/README): user
- [Opsgenie](https://docs.cloudposse.com/docs/modules/library/opsgenie/opsgenie): Integrate Opsgenie with Terraform.
- [awsutils](https://docs.cloudposse.com/docs/modules/library/provider/awsutils/README): Terraform provider for performing various tasks that cannot be performed with the official
- [context](https://docs.cloudposse.com/docs/modules/library/provider/context/README): Terrform provider for managing a context in Terraform. A context, in this case, is a set of key-value pairs that can
- [Provider](https://docs.cloudposse.com/docs/modules/library/provider/provider): Manage Terraform providers.
- [utils](https://docs.cloudposse.com/docs/modules/library/provider/utils/README): Terraform provider for various utilities (deep merging, Atmos stack configuration management), and to add additional missing functionality to Terra...
- [cloud-infrastructure-automation](https://docs.cloudposse.com/docs/modules/library/spacelift/cloud-infrastructure-automation/README): This repo contains a set of Terraform modules for implementing a CI/CD pipeline for Terraform infrastructure using Spacelift.
- [spacelift-policy](https://docs.cloudposse.com/docs/modules/library/spacelift/cloud-infrastructure-automation/modules/spacelift-policy/README): Terraform module to provision a [Spacelift](https://docs.spacelift.io/concepts/spacelift-policy/) policy.
- [spacelift-space](https://docs.cloudposse.com/docs/modules/library/spacelift/cloud-infrastructure-automation/modules/spacelift-space/README): Terraform module to provisions a [Spacelift](https://docs.spacelift.io/concepts/spaces/index.html) space.
- [spacelift-stack](https://docs.cloudposse.com/docs/modules/library/spacelift/cloud-infrastructure-automation/modules/spacelift-stack/README): Terraform module to provisions a [Spacelift](https://docs.spacelift.io/concepts/spaces/index.html) space.
- [spacelift-stacks-from-atmos-config](https://docs.cloudposse.com/docs/modules/library/spacelift/cloud-infrastructure-automation/modules/spacelift-stacks-from-atmos-config/README): Terraform module to extract the [Spacelift Stack](https://docs.spacelift.io/concepts/stack/) configuration from atmos
- [Spacelift](https://docs.cloudposse.com/docs/modules/library/spacelift/spacelift): Manage Spacelift with Terraform.
- [label](https://docs.cloudposse.com/docs/modules/library/terraform/label/README): Terraform module designed to generate consistent label names and tags for resources. Use `terraform-terraform-label` to implement a strict naming c...
- [Terraform](https://docs.cloudposse.com/docs/modules/library/terraform/terraform): Core Terraform resources.
- [ssh-key-pair](https://docs.cloudposse.com/docs/modules/library/tls/ssh-key-pair/README): Terraform module for generating an SSH public key file.
- [TLS](https://docs.cloudposse.com/docs/modules/library/tls/tls): Manage TLS certificates with Terraform.
- [config](https://docs.cloudposse.com/docs/modules/library/yaml/config/README): Terraform module to convert local and remote YAML configuration templates into Terraform lists and maps.
- [stack-config](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/README): Terraform module that loads and processes an opinionated ["stack" configuration](#examples) from YAML sources
- [backend](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/backend/README): backend
- [env](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/env/README): env
- [remote-state](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/remote-state/README): remote-state
- [settings](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/settings/README): settings
- [spacelift](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/spacelift/README): spacelift
- [stack](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/stack/README): stack
- [vars](https://docs.cloudposse.com/docs/modules/library/yaml/stack-config/modules/vars/README): vars
- [YAML](https://docs.cloudposse.com/docs/modules/library/yaml/yaml): YAML configuration management with Terraform.
- [Terraform Modules](https://docs.cloudposse.com/docs/modules/modules): Terraform Module Library
- [Action Items](https://docs.cloudposse.com/docs/quickstart/action-items): import Intro from '@site/src/components/Intro';
- [Quickstart FAQ](https://docs.cloudposse.com/docs/quickstart/faq): This is an extremely common question. Please see [What is the difference between a Vanity and a Service Domain?](/layers/network/faq/#what-is-the-d...
- [Handoffs](https://docs.cloudposse.com/docs/quickstart/handoffs): import Handoffs from '@site/docs/jumpstart/handoffs.mdx';
- [Kick Off with Cloud Posse](https://docs.cloudposse.com/docs/quickstart/kickoff): import Link from "@docusaurus/Link";
- [Quickstart](https://docs.cloudposse.com/docs/quickstart/quickstart): import Intro from '@site/src/components/Intro';
- [Cloud Posse Documentation License](https://docs.cloudposse.com/docs/reference/LICENSE): Documentation is licensed under the Creative Commons
- [Infrastructure as Code Library](https://docs.cloudposse.com/docs/reference/reference): import DocCardList from '@theme/DocCardList';
- [Adopted Architecture Decision Records](https://docs.cloudposse.com/docs/resources/adrs/adopted/adopted): Architectural decisions that have been adopted
- [Use API Gateway REST API vs HTTP API](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-api-gateway-rest-api-vs-http-api): :::info Needs Update!
- [Use Custom AWS Region Codes](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-aws-region-codes): import Intro from '@site/src/components/Intro';
- [Use Basic Provider Block for Root-level Components](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-basic-provider-block-for-root-level-components): **Date**: **19 Oct 2021**
- [Use Environment Variables for Configuration (12 Factor)](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-environment-variables-for-configuration-12-factor): **Date**: **14 Dec 2021**
- [Use One OpsGenie Integration per Team](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-one-opsgenie-integration-per-team): :::info Needs Update!
- [Use OpsGenie for Incident Management](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-opsgenie-for-incident-management): Monitoring platforms like CloudWatch and Datadog historically provide very poor support for Incident Management. Incident Management is the art of ...
- [Use Spacelift for GitOps with Terraform](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-spacelift-for-gitops-with-terraform): :::info
- [Use SSM over ASM for Infrastructure](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-ssm-over-asm-for-infrastructure): :::tip Latest!
- [Use Terraform Provider Block with compatibility for Role ARNs and Profiles](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-terraform-provider-block-with-compatibility-for-role-arns-an): **Date**: **19 Oct 2021**
- [Use Terraform to Manage Helm Releases](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-terraform-to-manage-helm-releases): **Date**: **14 Dec 2021**
- [Use Vendoring in Atmos](https://docs.cloudposse.com/docs/resources/adrs/adopted/use-vendoring-in-atmos): **Date**: **21 Mar 2022**
- [Architectural Design Records (ADRs)](https://docs.cloudposse.com/docs/resources/adrs/adrs): import DocCardList from '@theme/DocCardList'
- [Deprecated Architecture Decision Records](https://docs.cloudposse.com/docs/resources/adrs/deprecated/deprecated): Records that we no longer follow
- [Use Confluence for Customer Documentation](https://docs.cloudposse.com/docs/resources/adrs/deprecated/use-confluence-for-customer-documentation): :::info Needs Update!
- [Use Folder Structure for Compliance Components](https://docs.cloudposse.com/docs/resources/adrs/deprecated/use-folder-structure-for-compliance-components): **Date**: **21 Mar 2022**
- [Use IPAM for IP Address Management and Allocation](https://docs.cloudposse.com/docs/resources/adrs/deprecated/use-ipam-for-ip-address-management-and-allocation): **Date**: **29 Apr 2022**
- [Jumpstart Design Records](https://docs.cloudposse.com/docs/resources/adrs/jumpstart/jumpstart): Opinionated decisions for the Jumpstart architecture
- [Proposed: Atmos Workflows v2](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-atmos-workflows-v2): **Date**: **26 Jan 2022**
- [Proposed: Distribution Method for GitHub Actions](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-distribution-method-for-github-actions): **Date**: **22 Jun 2022**
- [Proposed: Spacelift Admin Stack Architecture](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-spacelift-admin-stack-architecture): **Date**: **19 Oct 2021**
- [Proposed: Use Atmos Registry](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-atmos-registry): :::info Needs Update!
- [Proposed: Use AWS Federated IAM over AWS SSO](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-aws-federated-iam-over-aws-sso): **Date**: **19 Oct 2021**
- [Proposed: Use Defaults for Components](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-defaults-for-components): :::info Needs Update!
- [Proposed: Use GitHub Actions with Atmos](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-github-actions-with-atmos): **Date**: **14 Apr 2022**
- [Proposed: Use Global Filename Convention](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-global-filename-convention): **Date**: **29 Apr 2022**
- [Proposed: Use ISO-8601 Date Index for ADRs](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-iso-8601-date-index-for-adrs): **Date**: **19 Oct 2021**
- [Proposed: Use Mixins to DRY-up Components](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-mixins-to-dry-up-components): **Date**: **11 Mar 2022**
- [Proposed: Use More Flexible Resource Labels](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-more-flexible-resource-labels): **Date**: **19 Apr 2022**
- [Proposed: Use Multiple Terraform State Bucket Backends](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-multiple-terraform-state-bucket-backends): **Date**: **25 Mar 2022**
- [Proposed: Use Private and Public Hosted Zones](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-private-and-public-hosted-zones): **Date**: **11 Feb 2022**
- [Proposal: Use Stack Filesystem Layout That Follows AWS Organization Conventions](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-stack-filesystem-layout-that-follows-aws-organizati): **Date**: **27 May 2022**
- [Proposed: Use Strict Provider Pinning in Components](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed-use-strict-provider-pinning-in-components): **Date**: **11 Feb 2022**
- [Proposed Architecture Decision Records](https://docs.cloudposse.com/docs/resources/adrs/proposed/proposed): Proposed architectural changes not yet adopted
- [Architecture Diagrams](https://docs.cloudposse.com/docs/resources/architecture-diagrams): import Intro from '@site/src/components/Intro';
- [Alerting](https://docs.cloudposse.com/docs/resources/deprecated/alerting/alerting): Set up effective alerting with OpsGenie and Datadog
- [Decide on Default Schedules](https://docs.cloudposse.com/docs/resources/deprecated/alerting/design-decisions/decide-on-default-schedules): Determine the on-call schedule for teams
- [Decide on Incident Ruleset](https://docs.cloudposse.com/docs/resources/deprecated/alerting/design-decisions/decide-on-incident-ruleset): Determine the rules that make an alert an incident
- [Decide on Teams for Escalations](https://docs.cloudposse.com/docs/resources/deprecated/alerting/design-decisions/decide-on-teams-for-escalations): Determine the teams that will be responsible for incidents
- [Design Decisions](https://docs.cloudposse.com/docs/resources/deprecated/alerting/design-decisions/design-decisions): Review the key design decisions for implementing incident management
- [How to Add Users to a Team in OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-add-users-to-a-team-in-opsgenie): Add users to an OpsGenie team via YAML configuration
- [How to Create Escalation Rules in OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-create-escalation-rules-in-opsgenie): Configure OpsGenie escalation rules in YAML to manage unacknowledged alerts
- [How to Create New Teams in OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-create-new-teams-in-opsgenie): Create new teams in OpsGenie and tag resources for targeted alerting
- [How to Onboard a New Service with Datadog and OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-onboard-a-new-service-with-datadog-and-opsgenie): Onboard new services and teams, then configure monitors and alerts
- [How to Setup Rotations in OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-setup-rotations-in-opsgenie): Configure on-call rotations with ClickOps
- [How to Sign Up for OpsGenie?](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/how-to-sign-up-for-opsgenie): Sign up for OpsGenie and choose the right plan based on your organization’s needs
- [How to Implement Incident Management with OpsGenie](https://docs.cloudposse.com/docs/resources/deprecated/alerting/opsgenie/opsgenie): Standardize incident management with clear escalations and response processes
- [Setup Alerting](https://docs.cloudposse.com/docs/resources/deprecated/alerting/setup): import Intro from '@site/src/components/Intro';
- [Deprecated Documentation](https://docs.cloudposse.com/docs/resources/deprecated/deprecated): Documentation for deprecated features and tools
- [Decide on how Spacelift will use external private modules](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/design-decisions/decide-on-how-spacelift-will-use-external-private-modules): How to securely access to private Terraform modules in Spacelift
- [Decide on Spacelift Administrative Stack Auto-deployment](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/design-decisions/decide-on-spacelift-administrative-stack-auto-deployment): Balance auto-deployment with manual confirmation
- [Decide on Spacelift Worker Pool Architecture](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/design-decisions/decide-on-spacelift-worker-pool-architecture): Scope Spacelift Workers for secure automation
- [Design Decisions](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/design-decisions/design-decisions): import DocCardList from "@theme/DocCardList";
- [Spacelift FAQ](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/faq): import Note from '@site/src/components/Note';
- [Setup](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/setup): Spacelift is a continuous delivery platform that allows you to automate your Terraform workflows.
- [Spacelift](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/spacelift): import Intro from '@site/src/components/Intro';
- [How to Destroy a Component using `atmos` or Spacelift](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-destroy-a-component-using-atmos-or-spacelift): import Intro from '@site/src/components/Intro';
- [How to Develop with Spacelift and Atmos](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-develop-with-spacelift-and-atmos): import Intro from '@site/src/components/Intro';
- [How to Enable Spacelift Drift Detection](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-enable-spacelift-drift-detection): import Intro from '@site/src/components/Intro';
- [How to Manage Explicit Component Dependencies with Spacelift](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-manage-explicit-component-dependencies-with-spacelift): import Intro from '@site/src/components/Intro';
- [How to Scale Spacelift Runners](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-scale-spacelift-runners): import Intro from '@site/src/components/Intro';
- [How to Sign Up for Spacelift](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-sign-up): import Intro from '@site/src/components/Intro';
- [How to Use Multiple Infrastructure Repositories with Spacelift](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-use-multiple-infrastructure-repositories-with-spacelift): import Intro from '@site/src/components/Intro';
- [How to use Spacectl](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/how-to-use-spacectl): import Intro from '@site/src/components/Intro';
- [Spacelift Tutorials](https://docs.cloudposse.com/docs/resources/deprecated/spacelift/tutorials/tutorials): import Intro from '@site/src/components/Intro';
- [12-Factor](https://docs.cloudposse.com/docs/resources/glossary/12-factor): The 12 Factor Pattern is a software methodology for building cloud-friendly (or cloud-native), scalable, maintainable applications that deploy easi...
- [Amazon Certificate Manager (ACM)](https://docs.cloudposse.com/docs/resources/glossary/acm): Amazon Certificate Manager is a service that lets you easily provision, manage, and deploy TLS certificates for use with AWS services such as ELBs ...
- [Amazon Machine Image (AMI)](https://docs.cloudposse.com/docs/resources/glossary/ami): An Amazon Machine Image provides the information required to launch an EC2 instance, which is a virtual server in the Amazon public cloud.
- [Anti-Pattern](https://docs.cloudposse.com/docs/resources/glossary/anti-pattern): An anti-pattern is the opposite of a best-practice.
- [Availability Zone (AZ)](https://docs.cloudposse.com/docs/resources/glossary/availability-zone): An Availability Zone is an isolated data center within a geographic region that is interconnected with other AZs through low-latency links.
- [aws-vault](https://docs.cloudposse.com/docs/resources/glossary/aws-vault): aws-vault is a utility for securely managing secrets with AWS Systems Manager (SSM) Parameter Store and KMS
- [AWS](https://docs.cloudposse.com/docs/resources/glossary/aws): Amazon Web Services is a public cloud offering by Amazon.com
- [Bastion](https://docs.cloudposse.com/docs/resources/glossary/bastion): A bastion host is the only host permitted to be directly addressed via SSH from the internet.
- [Best Practices](https://docs.cloudposse.com/docs/resources/glossary/best-practices): A well-understood and often published technique or methodology that, through experience and research, has proven to reliably lead to a desired result.
- [BeyondCorp](https://docs.cloudposse.com/docs/resources/glossary/beyondcorp): BeyondCorp is an enterprise security model pioneered by Google that enables every employee to work from untrusted networks without the use of a VPN...
- [Build Harness](https://docs.cloudposse.com/docs/resources/glossary/build-harness): A build-harness is like a test harness. It provides reusable methods for building and deploying software.
- [Business Logic](https://docs.cloudposse.com/docs/resources/glossary/business-logic): Business Logic is the code that describes real-world business rules that determine how things should work.
- [Chamber](https://docs.cloudposse.com/docs/resources/glossary/chamber): 'Chamber' is a tool by Segment IO for managing secrets with AWS SSM+KMS and exposing them as environment variables.
- [Change Management](https://docs.cloudposse.com/docs/resources/glossary/change-control): A formal process followed in order to make changes in a document, systematic process.
- [Chart Registry](https://docs.cloudposse.com/docs/resources/glossary/chart-registry): A Chart Registry is responsible for storing and serving Helm chart packages (`.tar.gz`) to the helm tiller running in the kubernetes cluster.
- [Continuous Integration / Continuous Delivery (CI/CD)](https://docs.cloudposse.com/docs/resources/glossary/cicd): CI/CD is the practice of combining “Continuous Integration” with “Continuous Delivery” (aka “Continuous Deployment”)
- [CLI](https://docs.cloudposse.com/docs/resources/glossary/cli): `cli` is common abbreviation for `client` and usually refers to some kind of command line tool.
- [ClickOps](https://docs.cloudposse.com/docs/resources/glossary/clickops): The act of performing systems administration and configuration by pointing and clicking on proprietary tools.
- [CloudFront](https://docs.cloudposse.com/docs/resources/glossary/cloudfront): Amazon CloudFront is a content delivery network (CDN) used to improve latency for end users by hosting cacheable content on distributed global edge...
- [Cloud Posse, LLC](https://docs.cloudposse.com/docs/resources/glossary/cloudposse): Cloud Posse is a DevOps Accelerator
- [CloudTrail](https://docs.cloudposse.com/docs/resources/glossary/cloudtrail)
- [CloudWatch Logs](https://docs.cloudposse.com/docs/resources/glossary/cloudwatch-logs): Amazon CloudWatch Logs is a central store for managing logs from AWS cloud resources and applications.
- [CloudWatch](https://docs.cloudposse.com/docs/resources/glossary/cloudwatch): Amazon CloudWatch is a monitoring service for AWS cloud resources and applications.
- [Container Management Platform (CMP)](https://docs.cloudposse.com/docs/resources/glossary/cmp)
- [CodeBuild](https://docs.cloudposse.com/docs/resources/glossary/code-build): Amazon CodeBuild is a fully managed build service that compiles source code, runs tests, and produces software packages that are ready to deploy. W...
- [CodeDeploy](https://docs.cloudposse.com/docs/resources/glossary/code-deploy): Amazon CodeDeploy is a service that automates software deployments to AWS cloud resources.
- [CodePipeline](https://docs.cloudposse.com/docs/resources/glossary/code-pipeline): Amazon CodePipeline is a continuous integration and continuous delivery service for fast and reliable application and infrastructure updates.
- [Code Review (CR)](https://docs.cloudposse.com/docs/resources/glossary/code-review): A process of reviewing Pull Requests to enable collaboration between team members, improves code quality/stability through creation of alternative ...
- [Codefresh](https://docs.cloudposse.com/docs/resources/glossary/codefresh): Codefresh is CI/CD as a service, built for containers with native support for Docker, Kubernetes and Helm.
- [Continuous Delivery (CD)](https://docs.cloudposse.com/docs/resources/glossary/continuous-delivery): A process in which immutable code artifacts (E.g. packages, rpms, images, etc) are shipped to permanent storage and optionally deployed to an envir...
- [Continuous Integration (CI)](https://docs.cloudposse.com/docs/resources/glossary/continuous-integration): A process in which code is automatically checked out from version control (e.g. git) and submitted to a battery of automated tests to ensure that t...
- [Create, Read, Update, Delete (CRUD)](https://docs.cloudposse.com/docs/resources/glossary/crud): CRUD is a frequently used acronym which means Create, Read, Update and Destroy. It refers to the standard life-cycle events for data manipulation.
- [The curl-bash pattern](https://docs.cloudposse.com/docs/resources/glossary/curl-bash): This is a common approach to installing various tools via a terminal prompt. You see this commonly done like so: `curl example.com/install.sh | bash`
- [Declarative Declaration](https://docs.cloudposse.com/docs/resources/glossary/declarative): The declarative approach focuses on the desired outcome, but doesn't expose any method to influence how that outcome is achieved.
- [Shared Memory Filesystem (/dev/shm)](https://docs.cloudposse.com/docs/resources/glossary/dev-shm): /dev/shm is an ephemeral in-memory filesystem useful for caching temporary files that should not be persisted.
- [The docker-bash pattern](https://docs.cloudposse.com/docs/resources/glossary/docker-bash): This is a SweetOps pattern used to install tooling via a terminal prompt. The primary usage is in Geodesic, which looks like: `docker run --rm clou...
- [Docker Compose](https://docs.cloudposse.com/docs/resources/glossary/docker-compose): Docker Compose is a tool for defining and running multi-container Docker applications. Typically used for local development.
- [Docker Image](https://docs.cloudposse.com/docs/resources/glossary/docker-image): A docker image is a self-contained, layered archive containing an application and all of its OS dependencies and is the artifact of running a `dock...
- [Docker Registry](https://docs.cloudposse.com/docs/resources/glossary/docker-registry): A Docker registry is a place to store and distribute Docker images.
- [Dockerfile](https://docs.cloudposse.com/docs/resources/glossary/dockerfile): A Dockerfile is a lightweight DSL that contains all the commands a user could call on the command line to assemble an image in order to run an appl...
- [Don't Repeat Yourself (DRY)](https://docs.cloudposse.com/docs/resources/glossary/dry): DRY is an acronym for "Don't Repeat Yourself", which refers to the aim of reducing repetition of software code through copy-and-paste.
- [End-to-end (e2e)](https://docs.cloudposse.com/docs/resources/glossary/e2e): The term *end-to-end* encompasses an entire workflow from start to finish.
- [ElasticBeanstalk (EB)](https://docs.cloudposse.com/docs/resources/glossary/eb): Amazon Elastic Beanstalk is an orchestration service offered from AWS for deploying infrastructure which orchestrates various services, including E...
- [Elastic Container Registry (ECR)](https://docs.cloudposse.com/docs/resources/glossary/ecr): Amazon ECR is a fully managed Docker container registry to store, manage, and deploy Docker container images on AWS.
- [ECS Agent](https://docs.cloudposse.com/docs/resources/glossary/ecs-agent): The ECS Agent is a component of Amazon Elastic Container Service (ECS) and is responsible for managing containers on behalf of Amazon ECS.
- [ECS Service](https://docs.cloudposse.com/docs/resources/glossary/ecs-service): An ECS Service is a specified number (the "desired count") of instances of an ECS Task simultaneously running in an Amazon ECS cluster.
- [ECS Task](https://docs.cloudposse.com/docs/resources/glossary/ecs-task): An ECS Task is a JSON document that describes one or more containers, that form an application. It can be thought of as a blueprint for an applicat...
- [ECS](https://docs.cloudposse.com/docs/resources/glossary/ecs)
- [Environment Variable](https://docs.cloudposse.com/docs/resources/glossary/environment-variable): An Environment Variable is an an interface provided by nearly every OS to pass configuration information to a process.
- [Executable Documentation](https://docs.cloudposse.com/docs/resources/glossary/executable-documentation): Executable Documentation is documentation that is so actionable you can just execute it directly or run it manually if you so choose.
- [FUSE](https://docs.cloudposse.com/docs/resources/glossary/fuse): FUSE stands for Filesystem in Userspace and is an interface that allows developers to implement custom filesystems without requiring complex kernel...
- [Geodesic Module](https://docs.cloudposse.com/docs/resources/glossary/geodesic-module): A geodesic module is a docker image that extends the geodesic base image and implements functions specific to that stage or account.
- [Geodesic Shell](https://docs.cloudposse.com/docs/resources/glossary/geodesic-shell): A geodesic shell is an invocation of a geodesic module. Said differently, it's when you run a geodesic docker image and enter into the bash shell.
- [Geodesic](https://docs.cloudposse.com/docs/resources/glossary/geodesic): Geodesic is an interactive command-line shell which bundles all essential open source cloud orchestration tools needed administer clusters from the...
- [Git Workflow](https://docs.cloudposse.com/docs/resources/glossary/git-workflow): A form of Change Control that uses Git as the system of record.
- [Glossary of Terms](https://docs.cloudposse.com/docs/resources/glossary/glossary): import Intro from '@site/src/components/Intro';
- [Goofys](https://docs.cloudposse.com/docs/resources/glossary/goofys): Goofys is a utility that implements S3-backed filesystems using FUSE.
- [HashiCorp Language (HCL)](https://docs.cloudposse.com/docs/resources/glossary/hcl): HCL is HashiCorp's configuration language used in multiple products, but most notably in `terraform`.
- [Helm Chart](https://docs.cloudposse.com/docs/resources/glossary/helm-chart): A 'Helm Chart' is a package that defines all the kubernetes resources necessary for deploying an application to kubernetes.
- [Helm Tiller](https://docs.cloudposse.com/docs/resources/glossary/helm-tiller): The helm tiller is the server-side component (API) for helm that manages all CRUD operations.
- [Helm](https://docs.cloudposse.com/docs/resources/glossary/helm): Helm is one of the predominant package managers for kubernetes which is used for installing applications on the cluster.
- [Identity Access Management (IAM)](https://docs.cloudposse.com/docs/resources/glossary/iam): Amazon's IAM is a service that helps you securely control access to AWS resources.
- [Identity Aware Proxy](https://docs.cloudposse.com/docs/resources/glossary/iap): An Identity-Aware Proxy enables an organization to control access to cloud applications (e.g. SaaS).
- [Imperative Declaration](https://docs.cloudposse.com/docs/resources/glossary/imperative): The imperative approach focuses on how precisely the infrastructure should be defined.
- [Infrastructure as Code (IaC)](https://docs.cloudposse.com/docs/resources/glossary/infrastructure-as-code): Infrastructure as Code (IaC) is the process of managing/provisioning Infrastructure as a Service (IaaS) using machine-readable definition files (us...
- [Infrastructure](https://docs.cloudposse.com/docs/resources/glossary/infrastructure): Infrastructure is everything that supports running your software
- [Ingress Controller](https://docs.cloudposse.com/docs/resources/glossary/ingress-controller): An Ingress Controller is a native resource type in Kubernetes that functions like a Layer 7 Load Balancer (e.g. HTTP Load Balancer) to route reques...
- [init-terraform](https://docs.cloudposse.com/docs/resources/glossary/init-terraform): The `init-terraform` script is a helper for configuring and then initializing terraform remote state in combination with the terraform-aws-tfstate-...
- [String Interpolation](https://docs.cloudposse.com/docs/resources/glossary/interpolation): String Interpolation is the process of evaluating a string  containing one or more placeholders (e.g. `$FOOBAR` or `{{...}}`) and replacing the pla...
- [jq](https://docs.cloudposse.com/docs/resources/glossary/jq): 'jq' is a Go-based command line tool for JSON that supports standard CRUD operations.
- [Kanban](https://docs.cloudposse.com/docs/resources/glossary/kanban): Kanban is a popular framework used to implement agile software development that leverages cards and boards to visually communicate the status of a ...
- [Key Management Service (KMS)](https://docs.cloudposse.com/docs/resources/glossary/kms): A managed service that makes it easy for you to create and control the encryption keys used to encrypt your data, and uses FIPS 140-2 validated har...
- [Kubernetes Ops (kops)](https://docs.cloudposse.com/docs/resources/glossary/kops): Kops ships with geodesic and is the easiest way to get a production grade Kubernetes cluster up and running on AWS.
- [Key Performance Indicator (KPI)](https://docs.cloudposse.com/docs/resources/glossary/kpi): A Key Performance Indicator is a metric (e.g. number of requests per second) that indicates if some key business objective is being satisfied.
- [kubectl](https://docs.cloudposse.com/docs/resources/glossary/kubectl): 'kubectl' is a command line tool (cli) for running commands against Kubernetes clusters
- [Kubernetes](https://docs.cloudposse.com/docs/resources/glossary/kubernetes): Kubernetes is an open-source system for automating deployment, scaling, and management of containerized applications. It groups containers that mak...
- [Lambda](https://docs.cloudposse.com/docs/resources/glossary/lambda): AWS serverless (functions as a service) offering.
- [Layer 7](https://docs.cloudposse.com/docs/resources/glossary/layer-7): The “Application Layer” (e.g. HTTP)
- [Multi-Factor Authentication (MFA)](https://docs.cloudposse.com/docs/resources/glossary/mfa): Multifactor authentication is a security "Best Practice" of requiring more than one method to verify access credentials during authentication
- [Monorepo](https://docs.cloudposse.com/docs/resources/glossary/monorepo): Monorepo refers to a strategy of storing all code for possibly unrelated applications within the same source code repository.
- [On-call Engineer (OCE)](https://docs.cloudposse.com/docs/resources/glossary/oce): The on-call engineer is the person currently assigned to take-point if any serious issues arise. They are typically the ones on “pager duty” who ge...
- [OSI Model](https://docs.cloudposse.com/docs/resources/glossary/osi): OSI is a conceptual model consisting of 7 abstraction layers that represent the various functions of a computing system without regard to its under...
- [Platform-as-a-Service (PaaS)](https://docs.cloudposse.com/docs/resources/glossary/paas): A Platform-as-a-Service is a type of cloud platform which offers black-box services that enable developers to build applications on top of the comp...
- [PagerDuty](https://docs.cloudposse.com/docs/resources/glossary/pagerduty): An incident management platform that provides reliable incident notifications via email, push, SMS, and phone, as well as automatic escalations, on...
- [Parameter Store](https://docs.cloudposse.com/docs/resources/glossary/parameter-store): The Amazon Systems Manager Parameter Store provides secure, hierarchical storage for configuration data management and secrets management.
- [Pingdom](https://docs.cloudposse.com/docs/resources/glossary/pingdom): Pingdom is a service that tracks the availability (e.g. uptime & downtime) as well as the performance of websites.
- [Polyrepo](https://docs.cloudposse.com/docs/resources/glossary/polyrepo): Polyrepo describes an approach of using multiple, independent source code repositories that are independently versioned and controlled.
- [Relational Database Service (RDS)](https://docs.cloudposse.com/docs/resources/glossary/rds): Amazon Relational Database Service is a service that makes it easier to set up, operate, and scale a relational database in the cloud. It provides ...
- [Release Engineering](https://docs.cloudposse.com/docs/resources/glossary/release-engineering): A sub-discipline of software engineering concerned with the compilation, assembly, and delivery of source code into finished products or other soft...
- [Terraform Root Module](https://docs.cloudposse.com/docs/resources/glossary/root-module): Every Terraform configuration has at least one module, known as its root module, which consists of the resources defined in the `.tf` files in the ...
- [S3 Bucket](https://docs.cloudposse.com/docs/resources/glossary/s3-bucket): An S3 bucket is a logical unit of storage in S3 that stores collections of objects.
- [S3](https://docs.cloudposse.com/docs/resources/glossary/s3): Amazon S3 is an object storage service with a simple web service interface and API capable of storing and retrieving any amount of data from anywhe...
- [s3fs](https://docs.cloudposse.com/docs/resources/glossary/s3fs): S3FS refers both to an application, script and the concept of mounting a remote S3 bucket as a local filesystem.
- [Software-as-a-Service (SaaS)](https://docs.cloudposse.com/docs/resources/glossary/saas): Sofware-as-a-Service is a form of a cloud services platform, whereby the computing platform (operating system and associated services) is delivered...
- [Sandbox Environment](https://docs.cloudposse.com/docs/resources/glossary/sandbox): A sandbox environment is a place where developers can play around with new technologies without risk of impacting staging or production environments.
- [Software Development Lifecycle (SDLC)](https://docs.cloudposse.com/docs/resources/glossary/sdlc): The SDLC describes the process for planning, developing, testing, and deploying an application.
- [Semantic Version](https://docs.cloudposse.com/docs/resources/glossary/semver): Semantic versioning (e.g. `1.0.3`) is the most widely adopted scheme for assigning unique version numbers to software releases.
- [Sidekick Containers](https://docs.cloudposse.com/docs/resources/glossary/sidekick-containers): A container that performs other duties that are related to our main application but shouldn't be directly built into that application.
- [Service Level Agreement](https://docs.cloudposse.com/docs/resources/glossary/sla): A contract or agreement offered by a service provider that defines the expected level of service, responsibilities, priorities, and guarantees rega...
- [Slack](https://docs.cloudposse.com/docs/resources/glossary/slack): Slack is a cloud-based service for team collaboration (chat, voice, video, screensharing, etc).
- [Subject Matter Expertise (SME)](https://docs.cloudposse.com/docs/resources/glossary/sme): A subject-matter expert (SME) is a person who is an authority (domain expert) in a particular area or topic, which is referred to as the domain suc...
- [Simple Notification Service (SNS)](https://docs.cloudposse.com/docs/resources/glossary/sns): Amazon Simple Notification Service is a fast, flexible, fully managed push notification service that lets you send individual messages or to fan-ou...
- [Amazon Systems Manager (SSM)](https://docs.cloudposse.com/docs/resources/glossary/ssm): Amazon's Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate o...
- [Single Sign-on (SSO)](https://docs.cloudposse.com/docs/resources/glossary/sso): Single sign-on (SSO) is an authentication system that allows a user to login to multiple applications with one set of credentials.
- [Stage](https://docs.cloudposse.com/docs/resources/glossary/stage): One of the phases in the SDLC whereby software is deployed to an environment. Common stages are “Production”, “Staging”, “QA” or “Development”
- [Synthetic Monitoring](https://docs.cloudposse.com/docs/resources/glossary/synthetic-monitoring): Synthetic monitoring is a style of monitoring that attempts to closely emulate the behavior of an end-user.
- [Technical Debt](https://docs.cloudposse.com/docs/resources/glossary/technical-debt): Technical debt represents all the things that need to be redone later due to poor choices or necessary tradeoffs made today.
- [HashiCorp Terraform](https://docs.cloudposse.com/docs/resources/glossary/terraform): HashiCorp Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently. Terraform can manage existing and popul...
- [Topology](https://docs.cloudposse.com/docs/resources/glossary/topology): A topology is the arrangement of various elements (links, nodes, etc.) in a network architecture.
- [Unlimited Staging Environments](https://docs.cloudposse.com/docs/resources/glossary/unlimited-staging-environments): The ability to run complete, disposable apps on Kubernetes for Staging and Development.
- [Virtual Private Cloud (VPC)](https://docs.cloudposse.com/docs/resources/glossary/vpc): A Virtual Private Cloud is a logically isolated network within in AWS.
- [WikiOps](https://docs.cloudposse.com/docs/resources/glossary/wikiops): Wiki documentation driven operation processes.
- [YAML](https://docs.cloudposse.com/docs/resources/glossary/yaml): YAML (or YAML Ain't Markup Language) is a human-readable data-serialization language.
- [yq](https://docs.cloudposse.com/docs/resources/glossary/yq): 'yq' is a Go-based command line tool for YAML that supports standard CRUD operations.
- [AWS Feature Requests and Limitations](https://docs.cloudposse.com/docs/resources/legacy/aws-feature-requests-and-limitations): import Intro from '@site/src/components/Intro';
- [Code of Conduct](https://docs.cloudposse.com/docs/resources/legacy/code-of-conduct): This code of conduct governs all documentation and related [<i>Open Source Projects</i>](https://github.com/cloudposse).
- [Demo Applications](https://docs.cloudposse.com/docs/resources/legacy/demo-applications): Here’s a list of fancy demo applications, predominantly for Kubernetes.
- [Archived Decisions](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/archived-decisions/archived-decisions): These Design Decisions have been superseded and are no longer used.
- [Decide on RDS requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/archived-decisions/decide-on-rds-requirements): Decide on RDS requirements
- [Decide on Status Page Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/archived-decisions/decide-on-status-page-requirements): - How to host it?
- [Decide on API Gateway Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-api-gateway-requirements): import Intro from "@site/src/components/Intro";
- [Decide on CloudFront Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-cloudfront-requirements): import Intro from "@site/src/components/Intro";
- [Decide on Cognito Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-cognito-requirements): import Intro from "@site/src/components/Intro";
- [Decide on IAM Roles for GitHub Action Runners](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-iam-roles-for-github-action-runners): import Intro from "@site/src/components/Intro";
- [Decide on Kinesis Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-kinesis-requirements): import Intro from "@site/src/components/Intro";
- [Decide on KMS Requirements](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-kms-requirements): import Intro from "@site/src/components/Intro";
- [Decide on Transactional Email (SMTP) Provider for Operational Emails](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/decide-on-transactional-email-smtp-provider-for-operational-email): import Intro from "@site/src/components/Intro";
- [Design Decisions](https://docs.cloudposse.com/docs/resources/legacy/design-decisions/design-decisions): import Intro from "@site/src/components/Intro";
- [Atmos](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/atmos): `atmos` is both a command-line tool and Golang module for provisioning, managing and orchestrating workflows across various toolchains including `t...
- [Building Blocks](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/building-blocks): Building Blocks
- [Concepts](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/concepts): Learn more about the core concepts and domain model that make up the SweetOps methodology.
- [Geodesic v3 (Obsolete)](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/geodesic): import ReactPlayer from 'react-player'
- [Introduction](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/introduction): Learn what SweetOps is and who it is for.
- [Leapp](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/leapp): [https://github.com/Noovolari/leapp](https://github.com/Noovolari/leapp)
- [Philosophy](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/philosophy): Learn more about the core philosophy and principles that make up the SweetOps methodology.
- [Stacks](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/stacks): Stacks are a way to express the complete infrastructure needed for an environment composed of [Components](/components) using a standard YAML confi...
- [Terraform](https://docs.cloudposse.com/docs/resources/legacy/fundamentals/terraform): import ReactPlayer from 'react-player'
- [Helm](https://docs.cloudposse.com/docs/resources/legacy/helm): Helm makes it easy to install `charts` (an application) on kubernetes clusters. Just like `npm` or `apt` make it easy to install NodeJS modules and...
- [Provision Status Page](https://docs.cloudposse.com/docs/resources/legacy/how-to-integrate-statuspage): Statuspage provides either a private or public endpoint that shows incidents relating to SLOs. With an internal page, developers and engineers with...
- [Authenticate with AWS inside of Geodesic using 'aws-vault' (Deprecated)](https://docs.cloudposse.com/docs/resources/legacy/howto/geodesic/authenticate-with-aws-vault): Learn how to authenticate within Geodesic using AWS IAM Credentials and `aws-vault`.
- [Authenticate with AWS using Leapp](https://docs.cloudposse.com/docs/resources/legacy/howto/geodesic/authenticate-with-leapp): Learn how to use Leapp to supply AWS credentials to tools used within Geodesic.
- [Updating Modules for Terraform 0.14](https://docs.cloudposse.com/docs/resources/legacy/howto/updating-modules-for-terraform-14): How to update our Terraform modules for Terraform 0.14
- [Getting Started](https://docs.cloudposse.com/docs/resources/legacy/intro): This page will help you get started with Cloud Posse. You'll be up and running in a jiffy!
- [Kubernetes](https://docs.cloudposse.com/docs/resources/legacy/kubernetes): - [Decide on EKS Node Pool Architecture](/layers/eks/design-decisions/decide-on-eks-node-pool-architecture)
- [Learning Resources](https://docs.cloudposse.com/docs/resources/legacy/learning-resources): import ReactPlayer from 'react-player'
- [Legacy Documentation](https://docs.cloudposse.com/docs/resources/legacy/legacy): Documentation we no longer maintain and is out of date
- [Lens](https://docs.cloudposse.com/docs/resources/legacy/lens): import ReactPlayer from 'react-player'
- [Operational Readiness](https://docs.cloudposse.com/docs/resources/legacy/operational-readiness): **WORK IN PROGRESS**
- [GOST Framework](https://docs.cloudposse.com/docs/resources/legacy/project-management/project-management-gost-framework): The GOST Framework is a method of clearly articulating a process for achieving a goal.
- [Managers vs Makers](https://docs.cloudposse.com/docs/resources/legacy/project-management/project-management-managers-vs-makers): Developers (Makers) and Managers work differently. Interrupts are costly for developers and therefore the business.
- [RACI Matrix](https://docs.cloudposse.com/docs/resources/legacy/project-management/project-management-raci-matrix): The RACI Responsibility assignment matrix is used to clarify the participation by various roles in completing tasks or deliverables as it relates t...
- [Remote Developer Environments: Comparative Analysis of Tools](https://docs.cloudposse.com/docs/resources/legacy/remote-developer-environments-comparative-analysis-of-tools): Comparative Analysis of Skaffold, Garden, and Telepresence with Helmfile
- [Tune SpotInst Parameters for EKS](https://docs.cloudposse.com/docs/resources/legacy/spotinst/how-to-tune-spotinst-parameters-for-eks): <img src="/assets/refarch/cleanshot-2022-01-26-at-10.39.03-20220126-163928.png" /><br/>
- [# How to Sign Up for Spot.io](https://docs.cloudposse.com/docs/resources/legacy/spotinst/spotinst): :::caution
- [Stacks](https://docs.cloudposse.com/docs/resources/legacy/stacks): Stacks are a way to express the complete infrastructure needed for an environment using a standard YAML configuration
- [Tools](https://docs.cloudposse.com/docs/resources/legacy/tools): The many tools that make up the SweetOps approach
- [Troubleshooting](https://docs.cloudposse.com/docs/resources/legacy/troubleshooting): Here are some common errors and fixes.
- [Getting started with Atmos](https://docs.cloudposse.com/docs/resources/legacy/tutorials/atmos-getting-started): Learn what Atmos is and how you can start using it with stacks to simplify your DevOps Automation tasks.
- [(Obsolete) Getting started with Geodesic v3](https://docs.cloudposse.com/docs/resources/legacy/tutorials/geodesic-getting-started): Learn what Geodesic is and how you can start using it to simplify your local infrastructure development.
- [Resources](https://docs.cloudposse.com/docs/resources/resources): import DocCardList from '@theme/DocCardList'
- [Get AWS Support](https://docs.cloudposse.com/docs/support/aws): import Intro from '@site/src/components/Intro';
- [Get Essential Support](https://docs.cloudposse.com/docs/support/essential): import Intro from '@site/src/components/Intro';
- [Get Flexible Support](https://docs.cloudposse.com/docs/support/flexible): import Intro from '@site/src/components/Intro';
- [Get Support](https://docs.cloudposse.com/docs/support): import Intro from '@site/src/components/Intro';
- [Get Platform Advisory](https://docs.cloudposse.com/docs/support/platform-advisory): import Intro from '@site/src/components/Intro';
- [Terraform Component GitHub Repository Has Moved!](https://docs.cloudposse.com/blog/2024-11-12-terraform-repo-move): import Intro from '@site/src/components/Intro';
- [Automated Component Testing](https://docs.cloudposse.com/blog/2025-03-21-automated-component-testing): import Intro from '@site/src/components/Intro';
- [Announcing Platform Advisory](https://docs.cloudposse.com/blog/2025-06-01-platform-advisory): Our new Platform Advisory service gives teams private, on-demand access to senior Cloud Posse engineers—perfect for de-risking migrations and suppo...
- [Introducing Our Component Deprecation Process](https://docs.cloudposse.com/blog/2025-10-15-deprecation-process): import Intro from '@site/src/components/Intro';
- [Why We Recommend Managed Node Groups Over Fargate for EKS Add-Ons](https://docs.cloudposse.com/blog/2025-10-15-fargate-vs-managed-node-groups): For production EKS clusters, a small managed node group provides reliability, cost efficiency, and automation—without Fargate's hidden complexity a...
- [Making Our Docs AI-Friendly with llms.txt](https://docs.cloudposse.com/blog/2025-10-17-llms-txt): import Intro from '@site/src/components/Intro';