AI SummaryThis Windsurf Rules booster provides a structured framework for bootstrapping secure AWS IAM roles for GitHub Actions OIDC integration, eliminating static credentials through CloudFormation templates and enforcing least-privilege access patterns. It benefits DevOps engineers and security teams seeking to automate and standardize CI/CD authentication across multiple repositories.
Description
Bootstrap secure AWS IAM roles for GitHub Actions OIDC with this repo: zero static credentials, least-privilege policies, multi-repo support via allowed_repos.txt, and automated setup using Bash and CloudFormation. Security and quality enforced in CI/CD
Install
# Download to your project root curl -o .windsurfrules "https://raw.githubusercontent.com/PaulDuvall/gha-aws-oidc-bootstrap/main/.windsurfrules.md"
Quality Score
Acceptable
64/100
Trust & Transparency
No License Detected
Review source code before installing
Verified Open Source
Hosted on GitHub — publicly auditable
Maintained
Last commit 8mo ago
6 stars
1 forks