Multi-cloud & platform-agnostic Infrastructure-as-Code modules
5 verified ansible / terraform modules for Multi-cloud & platform-agnostic, spanning Databases, Hardening & Compliance, Observability, Security & Secrets, and more. Every artifact is statically validated (tofu validate + tflint + Checkov) and passes the publish gate before it appears here. Each ships an annotated terraform.tfvars.example and a perpetual licence with 12 months of updates.
4 of 5 Multi-cloud & platform-agnostic modules are live-tested — really applied to a cloud account, verified, then destroyed. The remaining 1 are static-validated, live-test pending. We never label a module “live-tested” unless it actually passed apply→verify→destroy.
All Multi-cloud & platform-agnostic modules
Baseline Linux Hardening
SSH hardening drop-in, sysctl security profile, login banner, and time sync. Original, live-tested (Molecule) role.
$49.00
Web ServersNginx (verified role)
Verified wrapper around geerlingguy.nginx pinned at 3.3.0 plus an IaC Bazaar hardening overlay (server_tokens off, security headers, default-vhost removal); live-tested for idempotence and functionally verified: systemd unit active, HTTP 200, headers present, no version leak.
$39.00
DatabasesPostgreSQL Server (EL)
PostgreSQL server with guarded initdb, SCRAM-SHA-256 auth, managed conf.d drop-in, templated pg_hba, and app database + owner provisioning. Original, live-tested (Molecule/podman) role.
$99.00
ObservabilityPrometheus node_exporter (verified)
Official node_exporter release (pinned v1.11.1) with sha256 checksum-verified install, dedicated shell-less system user, and a systemd unit on :9100; live-tested for idempotence with a functional /metrics verification.
$39.00
Security & SecretsVault Policies & Auth
Vault policies, auth backends, and secret engine configuration as code.
$129.00