Skip to main content

Running the Pipeline and Analyzing Outputs

Overview

With the infrastructure deployed and verified, the next step is to execute the pipeline and analyze its outputs. This guide will walk you through running the pipeline, reviewing security scan results, and testing the deployed application.

Running the Pipeline

  1. Open the CodePipeline Dashboard and navigate to the awsome-fastapi pipeline. Click the pipeline name. Pipeline Dashboard

  2. Click Release Change, then confirm by clicking Release. This action triggers the pipeline to:

    • Pull the latest code from the GitHub repository.
    • Build the project.
    • Run tests and security scans.
    • Deploy the application into the EKS Cluster.
    note

    The pipeline process may take 10-30 minutes to complete. Use this time to take a break and return once it finishes.

Reviewing Results

After the pipeline completes, review the results of the security scans. Below are examples from Snyk and Trivy:

Snyk Results

Snyk Results

Trivy Results

Trivy Results

  • The Trivy scan results are extensive and might be challenging to address comprehensively. Focus on the most critical issues first.

  • If you want the pipeline to fail for certain vulnerabilities, you can configure the buildspec.yml file in the AWSOME-FastAPI repository accordingly.

    note

    Vulnerabilities may evolve over time, so periodic reviews and updates are essential.

Testing the API Application

  1. Open the EKS Clusters Dashboard and select the dsb-devsecops-cluster.

  2. Under Resources, navigate to Service and Networking > Services and locate the awsome-fastapi service. This will display the following screen: Service Dashboard

  3. Copy the provided URL and paste it into your web browser. It should resemble the following:

http://aacbaaa4740274a1a83351e8723871d7-2065184365.us-east-1.elb.amazonaws.com/

API Application