A cloud resiliency tool, inspired by Chaos Monkey and written in Node.js for AWS Lambda.
Caveat Emptor: This is still alpha software, and some actions may incur additional AWS charges.
$ npm install --save gunslinger
Function code:
exports.run = require('gunslinger')(require('./config'));
Configuration:
{
"armed": false,
"store": ["simple_db", "GunslingerEvents"],
"notifier": ["sns", "arn:aws:sns:eu-west-1:123456789012:Gunslinger"],
"grouper": "asg",
"filters": [
["tag", "gunslinger"],
["redundancy", 2],
["probability", 0.15],
["action_limit", 1]
],
"actions": [
"burn_cpu",
"fill_disk",
"terminate"
],
"ssh": {
"user": "ec2-user",
"privateKey": "/path/to/key.pem",
"publicIp": true
}
}
Create SimpleDB and SNS resources:
$ aws configure set preview.sdb true
$ aws sdb create-domain --domain-name GunslingerEvents
$ aws sns create-topic --name Gunslinger
Create a function:
$ aws lambda create-function --function-name Gunslinger --zip-file fileb:///path/to/code.zip --role GunslingerExecution --handler index.run --runtime nodejs4.3
The GunslingerExection role should have sns:Publish, sdb:PutAttributes, sdb:Select, autoscaling:DescribeAutoScalingGroups, ec2:DescribeInstances and ec2:TerminateInstances permissions.
Create a schedule and apply it to your function:
$ aws events put-rule --schedule-expression 'cron(0 9-16 ? * MON-FRI *)' --name GunslingerPerHourOfficeHours
$ aws lambda add-permission --function-name Gunslinger --statement-id 1 --action lambda:InvokeFunction --principal events.amazonaws.com --source-arn arn:aws:events:us-east-1:123456789012:rule/GunslingerPerHourOfficeHours
$ aws events put-targets --rule GunslingerPerHourOfficeHours --targets '{"Id" : "1", "Arn": "arn:aws:lambda:us-east-1:123456789012:function:Gunslinger"}'
The default mode of Gunslinger is "unarmed". In this mode, no destructive action is taken. Before you switch to the "armed" mode, verify your filter configuration. Without any filters, Gunslinger will target every auto scaling group within your AWS account on each invocation!
Gunslinger will persist events (such as instance termination) to maintain a record for future invocations. Currently, only SimpleDB is supported.
Optionally, Gunslinger can push events to a notification service. Currently, only SNS is supported.
Gunslinger targets logical groups of EC2 instances. Currently, only auto scaling groups are supported.
The set of target groups can be reduced by applying one or more of the following filters:
When a group is targeted, a target action is randomly selected out of this configured set. Please consult the source for available actions.
Unless publicIp is explicitly set to true, Gunslinger will attempt to SSH to the private IP addresses of instances. To use this mode, you must add a VPC configuration to your Lambda function.
FAQs
Cloud resiliency tool
We found that gunslinger demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.