openstax_aws 1.3.0 → 1.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b1bb7df27bc9eb147fc4dccf7969fbcfaab379a615adcb2e6a255bc1951f72ca
-  data.tar.gz: dfa73e4d1aa3b1973678aa4fbcff0588e6990ec59a74b1ffad4758820b08600c
+  metadata.gz: d7ed7cb99a4131a436325e8766d03f6a62accbd62a700a6238a0a6278ae1e6e5
+  data.tar.gz: 46f26ea0c266cf1c1ca1b0cf7c5307848bf8be3c5097c7fe16472a1fe3115f81
 SHA512:
-  metadata.gz: 27c7c692f885a25aed594990cd52478754a53a87b3f5c473e8815777070c809b8cead54937c9dfbb6f9f0d629c3169916e17b747ca92db1e3a9b300d6e3db0dd
-  data.tar.gz: 40a6e67cd196f2870d9f8c54873641719c7c799ddf7778665c730558de93eef2758ca940a667110a07aa189f755787940596e7865eeb778ec6b83ec4be109cc2
+  metadata.gz: 1871bbb908ecbfb58eb782fae57f960cf1db1a066adf8003c14115756273656a51aa2c32e061bb8fcc6607fe06633fd6936b7d71da38c907d313aa9d5509ad8b
+  data.tar.gz: 82108d04dde247454dfeafe8450a2bfed4ffe40d8d00c45dea2693501ae9693e7e77be618605cf3f49cb647bdb6cdf0b78e1cac71b37f3fe0fbe94543a1ffac8

data/.github/workflows/tests.yml

@@ -4,9 +4,7 @@ on:
   pull_request:
   push:
     branches:
-      - main
-  schedule:
-    - cron: '0 0 * * 0' # weekly
+      - master
 
 jobs:
   tests:
@@ -17,7 +15,7 @@ jobs:
       - uses: actions/checkout@v2
       - uses: actions/setup-ruby@v1
         with:
-          ruby-version: 2.7
+          ruby-version: 2.6
       - uses: actions/cache@v2
         with:
           path: vendor/bundle
@@ -30,4 +28,4 @@ jobs:
           bundle config path vendor/bundle
           bundle config jobs 2
           bundle install
-          bundle exec rake
+          bundle exec rspec

data/CHANGELOG.md

@@ -6,6 +6,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [1.5.0] - 2022-06-14
+- Automatically tag CloudWatch alarms and EventBridge rules after stacks are created or updated
+
+## [1.4.0] - 2022-05-11
+- ???
+
+## [1.3.0] - 2021-03-23
+- ???
+
 ## [1.2.0] - 2021-01-12
 
 - Added additional method to MskCluster resource, to return sorted list of bootstrap brokers

data/lib/openstax/aws/alarm.rb

@@ -0,0 +1,48 @@
+module OpenStax::Aws
+  class Alarm
+    attr_reader :raw_alarm
+
+    delegate_missing_to :@raw_alarm
+
+    def self.physical_resource_id_attribute
+      :name
+    end
+
+    def initialize(region:, name:)
+      @raw_alarm = ::Aws::CloudWatch::Alarm.new(
+        name: name,
+        client: Aws::CloudWatch::Client.new(region: region)
+      )
+    end
+
+    def tags
+      client.list_tags_for_resource(resource_arn: raw_alarm.alarm_arn).tags
+    end
+
+    def tag_resource(new_tags)
+      client.tag_resource resource_arn: raw_alarm.alarm_arn, tags: new_tags
+    end
+
+    def logger
+      OpenStax::Aws.configuration.logger
+    end
+
+    def add_tags_not_handled_by_cloudformation(stack_tags)
+      missing_tags = stack_tags.map(&:to_h) - tags.map(&:to_h)
+
+      return if missing_tags.empty?
+
+      logger.debug "Tagging #{name}..."
+      attempt = 1
+      begin
+        tag_resource missing_tags
+      rescue Aws::CloudWatch::Errors::Throttling
+        retry_in = attempt**2
+        logger.debug "Tagging #{name} failed... retrying in #{retry_in} seconds"
+        sleep retry_in
+        attempt += 1
+        retry
+      end
+    end
+  end
+end

data/lib/openstax/aws/auto_scaling_group.rb

@@ -1,14 +1,19 @@
 module OpenStax::Aws
   class AutoScalingGroup
-    attr_reader :raw_asg
+    attr_reader :raw_asg, :region
 
     delegate_missing_to :@raw_asg
 
+    def self.physical_resource_id_attribute
+      :name
+    end
+
     def initialize(name:, region:)
       @raw_asg = Aws::AutoScaling::AutoScalingGroup.new(
         name: name,
         client: Aws::AutoScaling::Client.new(region: region)
       )
+      @region = region
     end
 
     def increase_desired_capacity(by:)
@@ -24,5 +29,17 @@ module OpenStax::Aws
     def desired_capacity
       raw_asg.desired_capacity
     end
+
+    def alarms
+      client.describe_policies(
+        auto_scaling_group_name: raw_asg.name
+      ).flat_map(&:scaling_policies).flat_map(&:alarms).map do |alarm|
+        OpenStax::Aws::Alarm.new region: region, name: alarm.alarm_name
+      end
+    end
+
+    def add_tags_not_handled_by_cloudformation(stack_tags)
+      alarms.each { |alarm| alarm.add_tags_not_handled_by_cloudformation stack_tags }
+    end
   end
 end

data/lib/openstax/aws/build_image_command_1.rb

@@ -7,6 +7,7 @@ module OpenStax
       def initialize(ami_name_base:, region:,
                      verbose: false, debug: false,
                      github_org:, repo:, branch: nil, sha: nil,
+                     deployment_sha: nil,
                      packer_absolute_file_path: , playbook_absolute_file_path:,
                      dry_run: true)
         if sha.nil?
@@ -18,6 +19,8 @@ module OpenStax
                 )
         end
 
+        deployment_sha ||= OpenStax::Aws::GitHelper.current_sha
+
         ami_name = "#{ami_name_base}@#{sha[0..6]} #{Time.now.utc.strftime("%y%m%d%H%MZ")}"
 
         @packer = OpenStax::Aws::PackerFactory.new_packer(
@@ -30,9 +33,11 @@ module OpenStax
         @packer.var("region", region)
         @packer.var("ami_name", ami_name)
         @packer.var("sha", sha)
+        @packer.var("deployment_sha", deployment_sha)
         @packer.var("playbook_file", playbook_absolute_file_path)
         @packer.var("ami_description", {
           sha: sha,
+          deployment_sha: deployment_sha,
           github_org: github_org,
           repo: repo
         }.to_json)

data/lib/openstax/aws/deployment_base.rb

@@ -260,6 +260,32 @@ module OpenStax::Aws
       nil # can be overridden by the DSL
     end
 
+    def failed_statuses_table
+      rows = []
+
+      stacks.each do |stack|
+        stack.status(reload: false).failed_events_since_last_user_event.each do |event|
+          rows.push([stack.name, event.status_text, event.status_reason])
+        end if stack.status.failed?
+      end
+
+      column_widths = [
+        2 + rows.reduce(0) { |result, rowdata| [result, rowdata[0].length].max },
+        2 + rows.reduce(0) { |result, rowdata| [result, rowdata[1].length].max },
+        0
+      ]
+
+      output = []
+
+      output.push(["Stack", "Status", "Reason"].each_with_index.map { |header, index| header.ljust(column_widths[index]) }.join(''))
+
+      rows.each { |rowdata|
+        output.push(rowdata.each_with_index.map { |value, index| value.ljust(column_widths[index]) }.join(''))
+      }
+
+      output.join("\n")
+    end
+
     protected
 
     def parameter_default(parameter_name)
@@ -360,13 +386,24 @@ module OpenStax::Aws
       get_image_tag(image_id: image_id, key: "sha")
     end
 
-    protected
-
     def secrets_namespace(id: 'default')
       raise "Override this method in your deployment class and provide a namespace " \
             "for secrets data in the AWS Parameter Store.  The key there will be this namespace " \
             "prefixed by the environment name and suffixed with the secret name."
     end
 
+    def log_and_exit_if_failed_status
+      begin
+        yield
+      rescue
+        if status.failed?
+          logger.fatal("The following errors have occurred: \n#{failed_statuses_table}")
+          exit(1)
+        else
+          raise
+        end
+      end
+    end
+
   end
 end

data/lib/openstax/aws/distribution.rb

@@ -34,7 +34,8 @@ module OpenStax::Aws
       begin
         Aws::CloudFront::Waiters::InvalidationCompleted.new(
           client: client,
-          before_attempt: ->(*) { wait_message.say_it }
+          before_attempt: ->(*) { wait_message.say_it },
+          max_attempts: 60
         ).wait(
           distribution_id: id,
           id: invalidation_id

data/lib/openstax/aws/event_rule.rb

@@ -0,0 +1,34 @@
+module OpenStax::Aws
+  class EventRule
+    attr_reader :raw_rule, :client
+
+    delegate_missing_to :@raw_rule
+
+    def self.physical_resource_id_attribute
+      :name
+    end
+
+    def initialize(name:, region:)
+      @client = Aws::EventBridge::Client.new region: region
+      # There is no real rule wrapper in the SDK but the DescribeRuleResponse can be used
+      @raw_rule = client.describe_rule name: name
+    end
+
+    def tags
+      client.list_tags_for_resource(resource_arn: raw_rule.arn).tags
+    end
+
+    def tag_resource(new_tags)
+      client.tag_resource resource_arn: raw_rule.arn, tags: new_tags
+    end
+
+    def add_tags_not_handled_by_cloudformation(stack_tags)
+      missing_tags = stack_tags.map(&:to_h) - tags.map(&:to_h)
+
+      return if missing_tags.empty?
+
+      OpenStax::Aws.configuration.logger.debug "Tagging #{name}..."
+      tag_resource missing_tags
+    end
+  end
+end

data/lib/openstax/aws/git_helper.rb

@@ -3,7 +3,6 @@ require 'open-uri'
 
 module OpenStax::Aws
   module GitHelper
-
     def self.sha_for_branch_name(org_slash_repo:, branch:)
       ::Git.ls_remote("https://github.com/#{org_slash_repo}")["branches"][branch][:sha]
     end
@@ -11,7 +10,7 @@ module OpenStax::Aws
     def self.file_content_at_sha(org_slash_repo:, sha:, path:, github_token: nil )
       if github_token.blank?
         location = "https://raw.githubusercontent.com/#{org_slash_repo}/#{sha}/#{path}"
-        file = open(location)
+        file = URI.open(location)
         file.read
       else
         uri = URI("https://raw.githubusercontent.com/#{org_slash_repo}/#{sha}/#{path}")
@@ -23,5 +22,9 @@ module OpenStax::Aws
         end
       end
     end
+
+    def self.current_sha
+      ::Git.revparse('HEAD')
+    end
   end
 end

data/lib/openstax/aws/image.rb

@@ -25,9 +25,12 @@ module OpenStax::Aws
       get_tag(key: "sha")
     end
 
-    def self.find_by_sha(sha:, region:)
+    def self.find_by_sha(sha:, region:, deployment_sha: nil)
+      filters = [{name: "tag:sha", values: [sha]}]
+      filters << {name: "tag:deployment_sha", values: [deployment_sha]} unless deployment_sha.nil?
+
       Aws::EC2::Client.new(region: region).describe_images({
-        owners: ['self'], filters: [{name: "tag:sha", values: [sha]}]
+        owners: ['self'], filters: filters
       }).images.map{|aws_image| new(aws_image: aws_image)}
     end
   end

data/lib/openstax/aws/msk_cluster.rb

@@ -5,6 +5,10 @@ module OpenStax::Aws
 
     delegate_missing_to :@client
 
+    def self.physical_resource_id_attribute
+      :cluster_arn
+    end
+
     def initialize(cluster_arn:, region:)
       @cluster_arn = cluster_arn
       @client = ::Aws::Kafka::Client.new(region: region)
@@ -20,4 +24,3 @@ module OpenStax::Aws
 
   end
 end
-

data/lib/openstax/aws/packer_1_4_1.rb

@@ -41,54 +41,80 @@ module OpenStax::Aws
       cmd = "PACKER_LOG=1 #{cmd}" if @verbose
       cmd = "#{cmd} --debug" if @debug
 
-      cmd = "#{cmd} #{@absolute_file_path}"
+      cmd
     end
 
     def run
       @logger.info("**** DRY RUN ****") if @dry_run
-      @logger.info("Running: #{command}")
+      @logger.info("Running: #{command} #{@absolute_file_path}")
 
       if !@dry_run
         @logger.info("Printing stderr for desired verbosity")
-        ami = ""
 
-        Open3.popen2e(command) do |stdin, stdout_err, wait_thr|
-          begin
-            previous_interrupt_handler = Signal.trap 'INT' do
-              # Interrupt Packer
-              Process.kill 'INT', wait_thr.pid
+        tmpdir = nil
 
-              # Restore previous interrupt handler so we don't interrupt Packer again
-              Signal.trap 'INT', previous_interrupt_handler
+        begin
+          config_path = @absolute_file_path
 
-              # Disable other code that restores previous interrupt
-              previous_interrupt_handler = nil
+          # Can't handle modifying HCL2 templates yet
+          if config_path.ends_with?('.json')
+            config = JSON.parse(File.read(config_path))
+            config['post-processors'] ||= []
+            manifest_config = (config['post-processors']).find do |processor|
+              processor['type'] == 'manifest'
             end
 
-            stdout_err.sync = true
+            # Configure a manifest post-processor if not already configured
+            if manifest_config.nil?
+              tmpdir = Dir.mktmpdir
 
-            line = ''
+              manifest_config = { 'type' => 'manifest', 'output' => "#{tmpdir}/manifest.json" }
 
-            while char = stdout_err.getc do
-              line << char
-              STDERR.print char
+              config['post-processors'] << manifest_config
 
-              next unless char == "\n"
+              config_path = "#{tmpdir}/packer.json"
 
-              matchami = line.match(/AMI: (ami-[0-9\-a-z]*)/i)
-              ami = matchami.captures[0] if matchami
-
-              line = ''
+              File.write(config_path, JSON.dump(config))
             end
-          ensure
-            # Restore previous interrupt unless we did so already
-            Signal.trap 'INT', previous_interrupt_handler unless previous_interrupt_handler.nil?
           end
 
-          puts ami
+          Open3.popen2e("#{command} #{config_path}") do |stdin, stdout_err, wait_thr|
+            begin
+              previous_interrupt_handler = Signal.trap 'INT' do
+                # Interrupt Packer
+                Process.kill 'INT', wait_thr.pid
+
+                # Restore previous interrupt handler so we don't interrupt Packer again
+                Signal.trap 'INT', previous_interrupt_handler
+
+                # Disable other code that restores previous interrupt
+                previous_interrupt_handler = nil
+              end
+
+              stdout_err.sync = true
+
+              # Send all packer output to STDERR
+              while char = stdout_err.getc do
+                STDERR.print char
+              end
+            ensure
+              # Restore previous interrupt unless we did so already
+              Signal.trap 'INT', previous_interrupt_handler unless previous_interrupt_handler.nil?
+            end
+
+            # Read the AMI ID from the manifest file and output it to STDOUT
+            unless manifest_config.nil?
+              manifest = File.read(manifest_config['output']) rescue nil
 
-          # Return Packer's exit status wrapped in a Process::Status object
-          wait_thr.value
+              puts JSON.parse(manifest)['builds'].last['artifact_id'].split(':', 2).last \
+                unless manifest.nil?
+            end
+
+            # Return Packer's exit status wrapped in a Process::Status object
+            wait_thr.value
+          end
+        ensure
+          FileUtils.remove_entry(tmpdir) unless tmpdir.nil?
         end
       end
     end

data/lib/openstax/aws/rds_instance.rb

@@ -5,6 +5,10 @@ module OpenStax::Aws
 
     delegate_missing_to :@raw
 
+    def self.physical_resource_id_attribute
+      :db_instance_identifier
+    end
+
     def initialize(db_instance_identifier:, region:)
       @raw = Aws::RDS::DBInstance.new(
         db_instance_identifier,
@@ -14,12 +18,11 @@ module OpenStax::Aws
 
     def set_master_password(password:)
       raw.modify({
-        apply_immediately: true, 
+        apply_immediately: true,
         master_user_password: password
       })
-  
+
     end
 
   end
 end
-

data/lib/openstax/aws/resource_factory.rb

@@ -0,0 +1,36 @@
+module OpenStax::Aws
+  class ResourceFactory
+    # All classes listed here should implement the self.physical_resource_id method
+    ALL_TYPES = {
+      'AWS::AutoScaling::AutoScalingGroup' => OpenStax::Aws::AutoScalingGroup,
+      'AWS::CloudWatch::Alarm' => OpenStax::Aws::Alarm,
+      'AWS::Events::Rule' => OpenStax::Aws::EventRule,
+      'AWS::RDS::DBInstance' => OpenStax::Aws::RdsInstance,
+      'AWS::MSK::Cluster' => OpenStax::Aws::MskCluster
+    }
+
+    attr_reader :region, :types
+
+    def initialize(region:, types: nil)
+      @region = region
+      @types = types.nil? ? ALL_TYPES : ALL_TYPES.select { |type, _| types.include? type }
+    end
+
+    def from_stack_resource_or_summary(stack_resource)
+      klass = types[stack_resource.resource_type]
+      return if klass.nil?
+
+      klass.new(
+        region: region,
+        klass.physical_resource_id_attribute => stack_resource.physical_resource_id
+      )
+    end
+
+    def from_stack_resource_or_summary!(stack_resource)
+      from_stack_resource_or_summary(stack_resource).tap do |resource|
+        raise "'#{stack_resource.resource_type}' is not yet implemented in `ResourceFactory`" \
+          if resource.nil?
+      end
+    end
+  end
+end

data/lib/openstax/aws/sam_stack.rb

@@ -32,9 +32,12 @@ module OpenStax::Aws
             dry_run: dry_run)
     end
 
-    def build
+    def build(debug: false, env_vars: {})
       # SAM doesn't have an API or SDK - we have to make calls to its CLI
+      env_vars_prefix = env_vars.map { |variable, value| "#{variable}=#{value}" }.join(' ')
       command = "sam build -t #{absolute_template_path} -b #{build_directory}"
+      command += ' --debug' if debug
+      command = "#{env_vars_prefix} #{command}" if env_vars_prefix.present?
       System.call(command, logger: logger, dry_run: dry_run)
     end
 
@@ -50,7 +53,8 @@ module OpenStax::Aws
                 " --capabilities CAPABILITY_IAM" \
                 " --s3-bucket #{bucket_name}" \
                 " --s3-prefix #{name}" \
-                " --stack-name #{name}"
+                " --stack-name #{name}" \
+                " --region #{region}"
 
       if params.any?
         command += " --parameter-overrides #{self.class.format_hash_as_cli_stack_parameters(params)}"

data/lib/openstax/aws/stack.rb

@@ -86,9 +86,15 @@ module OpenStax::Aws
       }
 
       logger.info("Creating #{name} stack...")
-      client.create_stack(options) if !dry_run
 
-      wait_for_creation if wait
+      if !dry_run
+        client.create_stack(options)
+
+        if wait
+          wait_for_creation
+          tag_resources_not_handled_by_cloudformation
+        end
+      end
     end
 
     def parameters_for_update(overrides: {})
@@ -218,14 +224,24 @@ module OpenStax::Aws
           logger.info("Executing change set")
           change_set.execute
           reset_cached_remote_state
-        end
 
-        wait_for_update if wait
+          wait_for_update if wait
+        end
       end
 
+      # We can still tag resources even if there are no changes according to CloudFormation
+      tag_resources_not_handled_by_cloudformation if wait && !dry_run
+
       change_set
     end
 
+    def tag_resources_not_handled_by_cloudformation
+      stack_tags = self.class.format_hash_as_tag_parameters @tags
+      resources(
+        [ 'AWS::CloudWatch::Alarm', 'AWS::Events::Rule', 'AWS::AutoScaling::AutoScalingGroup' ]
+      ).each { |resource| resource.add_tags_not_handled_by_cloudformation(stack_tags) }
+    end
+
     def delete(retain_resources: [], wait: false)
       logger.info("**** DRY RUN ****") if dry_run
 
@@ -289,20 +305,20 @@ module OpenStax::Aws
 
     def resource(logical_id)
       stack_resource = aws_stack.resource(logical_id)
+      resource_factory = OpenStax::Aws::ResourceFactory.new region: region
+      resource_factory.from_stack_resource_or_summary! stack_resource
+    end
 
-      case stack_resource.resource_type
-      when "AWS::AutoScaling::AutoScalingGroup"
-        name = stack_resource.physical_resource_id
-        client = Aws::AutoScaling::Client.new(region: region)
-        Aws::AutoScaling::AutoScalingGroup.new(name: name, client: client)
-      when "AWS::RDS::DBInstance"
-        db_instance_identifier = stack_resource.physical_resource_id
-        OpenStax::Aws::RdsInstance.new(db_instance_identifier: db_instance_identifier, region: region)
-      when "AWS::MSK::Cluster"
-        msk_cluster_arn = stack_resource.physical_resource_id
-        OpenStax::Aws::MskCluster.new(cluster_arn: msk_cluster_arn, region: region)
-      else
-        raise "'#{stack_resource.resource_type}' is not yet implemented in `Stack#resource`"
+    def resources(types = nil)
+      resource_factory = OpenStax::Aws::ResourceFactory.new region: region, types: types
+
+      Enumerator.new do |yielder|
+        client.list_stack_resources(stack_name: name).each do |response|
+          response.stack_resource_summaries.each do |stack_resource_summary|
+            resource = resource_factory.from_stack_resource_or_summary stack_resource_summary
+            yielder << resource unless resource.nil?
+          end
+        end
       end
     end
 

data/lib/openstax/aws/template.rb

@@ -100,7 +100,7 @@ module OpenStax::Aws
     end
 
     def is_sam?
-      body.match(/Transform: AWS::Serverless/).present?
+      body.match(/Transform: .?AWS::Serverless/).present?
     end
 
   protected

data/lib/openstax/aws/version.rb

@@ -1,5 +1,5 @@
 module OpenStax
   module Aws
-    VERSION = "1.3.0"
+    VERSION = "1.6.0"
   end
 end

data/lib/openstax_aws.rb

@@ -1,7 +1,9 @@
 require "aws-sdk-autoscaling"
 require "aws-sdk-cloudformation"
 require "aws-sdk-cloudfront"
+require "aws-sdk-cloudwatch"
 require "aws-sdk-ec2"
+require "aws-sdk-eventbridge"
 require "aws-sdk-kafka"
 require "aws-sdk-rds"
 require "aws-sdk-s3"
@@ -143,10 +145,13 @@ require "openstax/aws/stack_status"
 require "openstax/aws/stack_factory"
 require "openstax/aws/deployment_base"
 require "openstax/aws/ec2_instance_data"
+require "openstax/aws/alarm"
 require "openstax/aws/auto_scaling_group"
 require "openstax/aws/auto_scaling_instance"
-require "openstax/aws/rds_instance"
+require "openstax/aws/event_rule"
 require "openstax/aws/msk_cluster"
+require "openstax/aws/rds_instance"
+require "openstax/aws/resource_factory"
 require "openstax/aws/packer_1_2_5"
 require "openstax/aws/packer_1_4_1"
 require "openstax/aws/packer_factory"

data/openstax_aws.gemspec

@@ -32,7 +32,9 @@ Gem::Specification.new do |spec|
   spec.add_dependency "aws-sdk-autoscaling", "~> 1"
   spec.add_dependency "aws-sdk-cloudformation", "~> 1"
   spec.add_dependency "aws-sdk-cloudfront", "~> 1"
+  spec.add_dependency "aws-sdk-cloudwatch", "~> 1"
   spec.add_dependency "aws-sdk-ec2", "~> 1"
+  spec.add_dependency "aws-sdk-eventbridge", "~> 1"
   spec.add_dependency "aws-sdk-kafka", "~> 1"
   spec.add_dependency "aws-sdk-rds", "~> 1"
   spec.add_dependency "aws-sdk-s3", "~> 1"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: openstax_aws
 version: !ruby/object:Gem::Version
-  version: 1.3.0
+  version: 1.6.0
 platform: ruby
 authors:
 - JP Slavinsky
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-03-23 00:00:00.000000000 Z
+date: 2022-08-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-autoscaling
@@ -52,6 +52,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1'
+- !ruby/object:Gem::Dependency
+  name: aws-sdk-cloudwatch
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
 - !ruby/object:Gem::Dependency
   name: aws-sdk-ec2
   requirement: !ruby/object:Gem::Requirement
@@ -66,6 +80,20 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1'
+- !ruby/object:Gem::Dependency
+  name: aws-sdk-eventbridge
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1'
 - !ruby/object:Gem::Dependency
   name: aws-sdk-kafka
   requirement: !ruby/object:Gem::Requirement
@@ -289,6 +317,7 @@ files:
 - bin/templates/aws_ruby_development.yml
 - examples/deployment.rb
 - ideas.md
+- lib/openstax/aws/alarm.rb
 - lib/openstax/aws/auto_scaling_group.rb
 - lib/openstax/aws/auto_scaling_instance.rb
 - lib/openstax/aws/build_image_command_1.rb
@@ -296,6 +325,7 @@ files:
 - lib/openstax/aws/deployment_base.rb
 - lib/openstax/aws/distribution.rb
 - lib/openstax/aws/ec2_instance_data.rb
+- lib/openstax/aws/event_rule.rb
 - lib/openstax/aws/extensions.rb
 - lib/openstax/aws/git_helper.rb
 - lib/openstax/aws/image.rb
@@ -304,6 +334,7 @@ files:
 - lib/openstax/aws/packer_1_4_1.rb
 - lib/openstax/aws/packer_factory.rb
 - lib/openstax/aws/rds_instance.rb
+- lib/openstax/aws/resource_factory.rb
 - lib/openstax/aws/s3_text_file.rb
 - lib/openstax/aws/sam_stack.rb
 - lib/openstax/aws/secrets.rb
@@ -327,7 +358,7 @@ licenses:
 - MIT
 metadata:
   allowed_push_host: https://rubygems.org
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -342,8 +373,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.7
-signing_key: 
+rubygems_version: 3.1.4
+signing_key:
 specification_version: 4
 summary: openstax IaC
 test_files: []