Golden Path with GitHub Actions Michel Hubert 

Michel Hubert Chief Solution Architect @michelhubert Expert on IAC, DevSecOps, Platform Engineering 

Golden Path : Highway for your developers Golden Path is any procedure in the software development lifecycle a user can follow with minimal cognitive load & that drives standardization. According to Humanitec's CEO Kaspar von Grünberg 

Objectives Better quality and consistency Reduce Developer Toil Security (Shift Left) Faster onboarding Deployment at Scale 

Workflow Report Report stage generates the needed scripts to reproduce the deployment and backup state files if needed Tests This stage executes end to end tests against the deployed resources to ensure resources are running as expected, then publishes the test results Preview & deploy This stage initializes the IAC tool, executes “plan” commands to detect the scope of IAC changes, then apply the planned IAC code changes Validate Validate stage ensures code readiness by running validations and linting tools, scanning code for possible credential leaks and executes unit tests 

Tooling  TF Lint : static code analysis tool to identify potential errors, bugs, stylistic errors, and suspicious constructs in your code.  Markdownlint, lychee for url, yamllint, jsonlint…  GitLeaks : open-source tool used to detect and prevent secrets (passwords / api-keys) checked-in to your git repository.  Terratest : Go library that provides patterns and helper functions for testing infrastructure, 

Workflow in execution 

Related sessions Session code Title Date/Time On Demand (Y/N) Breakout BRK188 Platform Engineering: Creating Scalable and Resilient Systems Wednesday, May 22 Y BRK192 Maximize joy, minimize toil with great developer experiences Tuesday, May 21 Y Lab LAB362-R2 Securing your Code with GitHub Advanced Security Thursday, May 23 N 

Stay Tuned https://github.com/hubertmichel/goldenpath 

© Copyright Microsoft Corporation. All rights reserved.