All internal infrastructure is developed and deployed with infrastructure-as-code in a number of key repositories:
- General infrastructure:
- Sourcegraph instances:
Internal infrastructure is primarily deployed from Terraform definitions, though Kubernetes manifests are used for internal tools as well where relevant.
In both cases, all changes are required to go through standardized and automated set of static analysis tools that verify the validity of manifests before they can be deployed, which includes security scanning.
Sourcegraph instances are deployed from Kubernetes manifests that go through a standardized and automated set of static analysis tools that verify the validity of manifests before they are deployed.
The version of Sourcegraph that gets deployed is required to go through the Sourcegraph application continuous integration pipeline beforehand.