event-recorder

command module
v0.0.0-...-a53bbd7 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 5, 2024 License: Apache-2.0 Imports: 11 Imported by: 0

README

Cloud Events Recorder

This module sets up infrastructure to listen to Chainguard Image pull events and store them in BigQuery, for later analysis.

You can set up the infrastructure with Terraform. Create a file called main.tf with the following content:

module "image-copy" {
  source = "github.com/chainguard-dev/platform-examples//event-recorder/iac"

  project_id = "my-gcp-project"
  region     = "us-central1"
  group      = "[MY-CHAINGUARD-GROUP-ID]"
}

Then in that directory, run terraform init and terraform apply to create the infrastructure.

Architecture

flowchart LR
    A(((Chainguard))) -- events --> B["Cloud Run Trampoline\n(public URL)"]
    B -- validated + filtered --> C[Cloud Run Broker Ingress]
    subgraph private network
    C -- publish --> D[["Cloud Pub/Sub\n(buffered)"]]
    D -- subscribe --> E[Cloud Run Recorder]
    E -- writes every 3m --> F[Cloud Storage]
    F -- loads every 15m --> G[(BigQuery)]
    end

The event recorder infrastructure leverages GCP Cloud Run, Cloud Pub/Sub and Cloud Storage to efficiently buffer events before loading into BigQuery.

This means that records may not be published immediately -- there is a delay of up to 18 minutes end-to-end -- but bursts of requests should be handled gracefully without dropping events.

When the group is receiving no events, the Cloud Run services will scale to zero and incur no cost. During bursts of events, services will scale up as needed.

Data Schema

The Terraform creates a BigQuery dataset named cloudevents_pull_event_recorder, with a table named dev_chainguard_registry_pull_v1.

The schema is described here, and contains fields describing the user who pulled the image, the image that was pulled, the time of the pull, and information about errors that occurred during the pull. This schema matches the type described in the event documentation.

Destroying the infrastructure

There are GCP costs associated with running the infrastructure to ingest and store events.

To destroy the infrastructure, run terraform destroy.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.