Skip to content

Commit d23904a

Browse files
kundusokunduso
authored
Merge pull request #55 from kunduso-org/update-readme
Update README.md to reflect Lambda-only deregistration architecture
2 parents 3ad0bfc + 5840cdf commit d23904a

2 files changed

Lines changed: 9 additions & 8 deletions

File tree

.github/workflows/code-scan.yml

Lines changed: 7 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -2,14 +2,16 @@ name: checkov-static-analysis-scan
22

33
# Controls when the workflow will run
44
on:
5-
# Triggers the workflow on push or pull request events but only for the "main" branch
5+
workflow_dispatch:
66
push:
7-
branches: [ "*" ]
7+
branches: [ '*' ]
8+
paths-ignore:
9+
- '**/README.md'
810
pull_request:
9-
branches: [ "main" ]
11+
branches: ["main"]
12+
paths-ignore:
13+
- '**/README.md'
1014

11-
# Allows you to run this workflow manually from the Actions tab
12-
workflow_dispatch:
1315
permissions: read-all
1416
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
1517
jobs:

README.md

Lines changed: 2 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ For a comprehensive step-by-step guide with detailed explanations, please refer
2424

2525
- **High Availability**: Maintains consistent runner capacity using AWS Auto Scaling Groups with automatic instance replacement across multiple Availability Zones
2626
- **Secure Authentication**: Uses GitHub App authentication for secure API access
27-
- **Automated Lifecycle Management**: Automatic runner registration and deregistration with dual mechanisms (Lambda + systemd service)
27+
- **Automated Lifecycle Management**: Automatic runner registration via user data script and deregistration using Lambda functions
2828
- **Automated Deregistration**: Prevents orphaned runners in GitHub organization using lifecycle hooks and Lambda functions
2929
- **Unified Logging**: Centralized CloudWatch logging for complete runner lifecycle tracking
3030
- **Network Security**: Runs in private subnets with NAT Gateway for outbound internet access
@@ -47,8 +47,7 @@ The solution deploys:
4747
- **EFS file system** for shared runner workspace storage with optimized NFS parameters
4848
- **CloudWatch log groups** for unified lifecycle logging with structured format
4949
- **Secrets Manager** for secure GitHub App credentials storage
50-
- **SSM Parameter Store** for runner configuration scripts and deregistration service
51-
- **Systemd Service** for backup deregistration mechanism
50+
- **SSM Parameter Store** for NAT Gateway IP addresses
5251

5352
## Prerequisites
5453

0 commit comments

Comments
 (0)