This blog post details how you can manage your Kubernetes infrastructure using familiar programming languages through cdk8s.

Cdk8s is based on the principles of the AWS CDK. CDK allows you to provision AWS infrastructure using familiar programming languages which are 'synthesized' into CloudFormation templates which can then be deployed to AWS. Cdk8s uses this model to allow you to define Kubernetes resources in familiar programming languages, then synthesize the resources you have defined into Kubernetes Yaml mainfests which can then be applied.

This post will detail how to configure AWS Chatbot to provide Slack notifications based on the error metrics of AWS Lambda functions.

What we will build at a high level is as follows:

1. A simple Lambda Function
2. A CloudWatch alarm to monitor errors of our Lambda Function
3. An SNS Topic to receive alerts from the CloudWatch alarm and forward these alerts on
4. Configure AWS Chatbot to subscribe to the SNS Topic and send alerts to Slack
5. IAM permissions to tie everything together

In this blog post, I'll be detailing how to set up automated Slack notifications for any new AWS Security Hub findings, through AWS CDK Typescript.

We'll create a single 'securityHubNotificationsStack' that will deploy all the infrastructure we need.

At a high level, here's what we'll build:

1. An EventBridge rule that triggers for any Security Hub findings
2. An SQS Queue that consumes the events triggered by the rule
3. A Lambda Function that processes messages from the queue and sends the notifications to Slack via a Slack incoming webhook
4. A dead letter queue (DLQ) to store any messages in our queue that fail processing
5. A CloudWatch alarm to notify us of any failed messages.