@aws-cdk/aws-lambda-go-alpha
Advanced tools
The CDK Construct Library for AWS Lambda in Golang
The APIs of higher level constructs in this module are experimental and under active development. They are subject to non-backward compatible changes or removal in any future version. These are not subject to the Semantic Versioning model and breaking changes will be announced in the release notes. This means that while you may use them, you may need to update your source code when upgrading to a newer version of this package.
This library provides constructs for Golang Lambda functions.
To use this module you will either need to have Go installed (go1.11 or later) or Docker installed.
See Local Bundling/Docker Bundling for more information.
This module also requires that your Golang application is using a Go version >= 1.11 and is using Go modules.
Define a GoFunction:
new go.GoFunction(this, 'handler', {
entry: 'lambda-app/cmd/api',
});
By default, if entry points to a directory, then the construct will assume there is a Go entry file (i.e. main.go).
Let's look at an example Go project:
lambda-app
├── cmd
│ └── api
│ └── main.go
├── go.mod
├── go.sum
├── pkg
│ ├── auth
│ │ └── auth.go
│ └── middleware
│ └── middleware.go
└── vendor
├── github.com
│ └── aws
│ └── aws-lambda-go
└── modules.txt
With the above layout I could either provide the entry as lambda-app/cmd/api or lambda-app/cmd/api/main.go, either will work.
When the construct builds the golang binary this will be translated go build ./cmd/api & go build ./cmd/api/main.go respectively.
The construct will figure out where it needs to run the go build command from, in this example it would be from
the lambda-app directory. It does this by determining the mod file path, which is explained in the
next section.
The GoFunction tries to automatically determine your project root, that is
the root of your golang project. This is usually where the top level go.mod file or
vendor folder of your project is located. When bundling in a Docker container, the
moduleDir is used as the source (/asset-input) for the volume mounted in
the container.
The CDK will walk up parent folders starting from
the current working directory until it finds a folder containing a go.mod file.
Alternatively, you can specify the moduleDir prop manually. In this case you
need to ensure that this path includes entry and any module/dependencies used
by your function. Otherwise bundling will fail.
The GoFunction can be used with either the GO_1_X runtime or the provided runtimes (PROVIDED/PROVIDED_AL2).
By default it will use the PROVIDED_AL2 runtime. The GO_1_X runtime does not support things like
Lambda Extensions, whereas the provided runtimes do.
The aws-lambda-go library has built in support for the provided runtime as long as
you name the handler bootstrap (which we do by default).
The construct will attempt to figure out how to handle the dependencies for your function. It will
do this by determining whether or not you are vendoring your dependencies. It makes this determination
by looking to see if there is a vendor folder at the mod file path.
With this information the construct can determine what commands to run. You will generally fall into two scenarios:
vendor folder)
In this case go build will be run with -mod=vendor setvendor folder)
If you are not vendoring then go build will be run without -mod=vendor
since the default behavior is to download dependenciesAll other properties of lambda.Function are supported, see also the AWS Lambda construct library.
By default the following environment variables are set for you:
GOOS=linuxGOARCH: based on the target architecture of the Lambda functionGO111MODULE=onUse the environment prop to define additional environment variables when go runs:
new go.GoFunction(this, 'handler', {
entry: 'app/cmd/api',
bundling: {
environment: {
HELLO: 'WORLD',
},
},
});
If Go is installed locally and the version is >= go1.11 then it will be used to bundle your code in your environment. Otherwise, bundling will happen in a Lambda compatible Docker container with the Docker platform based on the target architecture of the Lambda function.
For macOS the recommended approach is to install Go as Docker volume performance is really poor.
Go can be installed by following the installation docs.
To force bundling in a docker container even if Go is available in your environment, set the forceDockerBundling prop to true. This is useful if you want to make sure that your function is built in a consistent Lambda compatible environment.
Use the buildArgs prop to pass build arguments when building the bundling image:
new go.GoFunction(this, 'handler', {
entry: 'app/cmd/api',
bundling: {
buildArgs: {
HTTPS_PROXY: 'https://127.0.0.1:3001',
},
},
});
Use the bundling.dockerImage prop to use a custom bundling image:
new go.GoFunction(this, 'handler', {
entry: 'app/cmd/api',
bundling: {
dockerImage: DockerImage.fromBuild('/path/to/Dockerfile'),
},
});
Use the bundling.goBuildFlags prop to pass additional build flags to go build:
new go.GoFunction(this, 'handler', {
entry: 'app/cmd/api',
bundling: {
goBuildFlags: ['-ldflags "-s -w"'],
},
});
By default this construct doesn't use any Go module proxies. This is contrary to a standard Go installation, which would use the Google proxy by default. To recreate that behavior, do the following:
new go.GoFunction(this, 'GoFunction', {
entry: 'app/cmd/api',
bundling: {
goProxies: [go.GoFunction.GOOGLE_GOPROXY, 'direct'],
},
});
You can set additional Docker options to configure the build environment:
new go.GoFunction(this, 'GoFunction', {
entry: 'app/cmd/api',
bundling: {
network: 'host',
securityOpt: 'no-new-privileges',
user: 'user:group',
volumesFrom: ['777f7dc92da7'],
volumes: [{ hostPath: '/host-path', containerPath: '/container-path' }],
},
});
It is possible to run additional commands by specifying the commandHooks prop:
// This example only available in TypeScript
// Run additional commands on a GoFunction via `commandHooks` property
new go.GoFunction(this, 'handler', {
bundling: {
commandHooks: {
// run tests
beforeBundling(inputDir: string): string[] {
return ['go test ./cmd/api -v'];
},
// ...
},
},
});
The following hooks are available:
beforeBundling: runs before all bundling commandsafterBundling: runs after all bundling commandsThey all receive the directory containing the go.mod file (inputDir) and the
directory where the bundled asset will be output (outputDir). They must return
an array of commands to run. Commands are chained with &&.
The commands will run in the environment in which bundling occurs: inside the container for Docker bundling or on the host OS for local bundling.
Depending on how you structure your Golang application, you may want to change the assetHashType parameter.
By default this parameter is set to AssetHashType.OUTPUT which means that the CDK will calculate the asset hash
(and determine whether or not your code has changed) based on the Golang executable that is created.
If you specify AssetHashType.SOURCE, the CDK will calculate the asset hash by looking at the folder
that contains your go.mod file. If you are deploying a single Lambda function, or you want to redeploy
all of your functions if anything changes, then AssetHashType.SOURCE will probably work.
For example, if my app looked like this:
lambda-app
├── cmd
│ └── api
│ └── main.go
├── go.mod
├── go.sum
└── pkg
└── auth
└── auth.go
With this structure I would provide the entry as cmd/api which means that the CDK
will determine that the protect root is lambda-app (it contains the go.mod file).
Since I only have a single Lambda function, and any update to files within the lambda-app directory
should trigger a new deploy, I could specify AssetHashType.SOURCE.
On the other hand, if I had a project that deployed multiple Lambda functions, for example:
lambda-app
├── cmd
│ ├── api
│ │ └── main.go
│ └── anotherApi
│ └── main.go
├── go.mod
├── go.sum
└── pkg
├── auth
│ └── auth.go
└── middleware
└── middleware.go
Then I would most likely want AssetHashType.OUTPUT. With OUTPUT
the CDK will only recognize changes if the Golang executable has changed,
and Go only includes dependencies that are used in the executable. So in this case
if cmd/api used the auth & middleware packages, but cmd/anotherApi did not, then
an update to auth or middleware would only trigger an update to the cmd/api Lambda
Function.
By default the input and output of Docker based bundling is handled via bind mounts. In situtations where this does not work, like Docker-in-Docker setups or when using a remote Docker socket, you can configure an alternative, but slower, variant that also works in these situations.
new go.GoFunction(this, 'GoFunction', {
entry: 'app/cmd/api',
bundling: {
bundlingFileAccess: BundlingFileAccess.VOLUME_COPY,
},
});
FAQs
The CDK Construct Library for AWS Lambda in Golang
The npm package @aws-cdk/aws-lambda-go-alpha receives a total of 12,763 weekly downloads. As such, @aws-cdk/aws-lambda-go-alpha popularity was classified as popular.
We found that @aws-cdk/aws-lambda-go-alpha demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.