ilia
3415340e26
All checks were successful
CI / skip-ci-check (pull_request) Successful in 1m18s
CI / lint-and-test (pull_request) Successful in 1m21s
CI / ansible-validation (pull_request) Successful in 2m43s
CI / secret-scanning (pull_request) Successful in 1m19s
CI / dependency-scan (pull_request) Successful in 1m23s
CI / sast-scan (pull_request) Successful in 2m28s
CI / license-check (pull_request) Successful in 1m20s
CI / vault-check (pull_request) Successful in 2m21s
CI / playbook-test (pull_request) Successful in 2m19s
CI / container-scan (pull_request) Successful in 1m48s
CI / sonar-analysis (pull_request) Successful in 1m26s
CI / workflow-summary (pull_request) Successful in 1m17s
678 B
678 B
Architecture (canonical doc moved)
The canonical architecture document is now:
project-docs/architecture.md
This docs/reference/architecture.md file is kept as a pointer to avoid maintaining two competing sources of truth.
Best Practices
Code Organization
- One role = one responsibility
- Idempotent tasks
- Proper handler usage
- Template for configuration
- Defaults for flexibility
Security
- Vault for all secrets
- Least privilege principle
- Regular updates
- Audit logging
- Network segmentation
Operations
- Test in check mode
- Use tags for selective runs
- Document changes
- Version control everything
- Monitor and alert