AWS CodePipeline - AWS GovCloud (US)

AWS CodePipeline

This service is currently available in AWS GovCloud (US-West) only.

AWS CodePipeline is a continuous delivery service you can use to model, visualize, and automate the steps required to release your software. You can quickly model and configure the different stages of a software release process. CodePipeline automates the steps required to release your software changes continuously.

How AWS CodePipeline Differs for AWS GovCloud (US)

The following actions/provider types are not supported:

  • Custom actions

  • Source Actions:

    • Amazon ECR

    • Amazon S3

    • AWS CodeStar Source Connection (Bitbucket)

    • GitHub

  • Build Actions:

    • Jenkins

  • Test Actions:

    • Device Farm

    • Jenkins

  • Deploy Actions:

    • AWS Elastic Beanstalk

    • AWS OpsWorks

    • AWS Service Catalog

    • Amazon Alexa

    • AWS AppConfig

  • Invoke Actions:

    • AWS Step Functions

  • Since AWS GovCloud (US) operates as isolated regions, you cannot share or use CodePipeline resources with other services outside of the regions. For example, you cannot use a CodeCommit repository in AWS GovCloud (US-West) as the source for a pipeline in CodePipeline that is not in the AWS GovCloud (US-West) Region.

  • All policy statements must refer to the GovCloud ARNs for the AWS GovCloud (US) Region. For example, policies for AWS Artifact buckets, CloudWatch Events rules, and trigger resources must use the AWS GovCloud (US) ARNs for those services. For more information, see Amazon Resource Names (ARNs) in GovCloud (US) Regions .

  • All IAM users and service roles must exist in the AWS GovCloud (US) Region.

Documentation for AWS CodePipeline

AWS CodePipeline documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in the AWS GovCloud (US) Region. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in the AWS GovCloud (US) Region, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted

All deployments managed in CodePipeline support ITAR-regulated data.

CodePipeline metadata fields are not permitted to contain ITAR-regulated data. For example, do not enter ITAR-regulated data in the following fields:

  • Pipeline Name

  • Stage Name

  • Action Name

  • CodeCommit Branch Name

  • GitHub Branch Name