What It Does#
Terraform IaC for spinning up FedRAMP Moderate-compliant infra on GCP. No tfengine, just native Terraform.
Stack#
- Workload Identity Federation (no long-lived keys)
- Private GKE clusters
- Private Cloud SQL (Postgres 15)
- Binary Authorization
- Confidential Computing (AMD SEV)
- GitHub Actions with OIDC
