Initial commit: AWS Cost Optimization Dashboard

- Complete Terraform infrastructure for cost monitoring
- Lambda function with comprehensive error handling
- S3 storage with lifecycle policies for cost data
- Slack integration for intelligent cost alerts
- EventBridge scheduling for daily cost checks
- Security best practices with IAM least privilege
- Automated deployment and testing scripts
- Comprehensive documentation and best practices
- CI/CD pipeline with GitHub Actions
- Multi-environment support (dev/staging/prod)

Author: Copubah

.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,43 @@
+---
+name: Bug report
+about: Create a report to help us improve
+title: '[BUG] '
+labels: bug
+assignees: ''
+
+---
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Screenshots**
+If applicable, add screenshots to help explain your problem.
+
+**Environment (please complete the following information):**
+- OS: [e.g. macOS, Linux, Windows]
+- Terraform version: [e.g. 1.5.0]
+- AWS CLI version: [e.g. 2.13.0]
+- Python version: [e.g. 3.11]
+
+**AWS Configuration:**
+- Region: [e.g. us-east-1]
+- Environment: [e.g. dev, staging, prod]
+
+**Additional context**
+Add any other context about the problem here.
+
+**Logs**
+If applicable, add relevant logs from:
+- Terraform output
+- Lambda CloudWatch logs
+- AWS CLI output

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,32 @@
+---
+name: Feature request
+about: Suggest an idea for this project
+title: '[FEATURE] '
+labels: enhancement
+assignees: ''
+
+---
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Use Case**
+Describe the specific use case or scenario where this feature would be beneficial.
+
+**Implementation Ideas**
+If you have ideas about how this could be implemented, please share them.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.
+
+**Priority**
+- [ ] Low
+- [ ] Medium
+- [ ] High
+- [ ] Critical

.github/workflows/ci.yml

@@ -0,0 +1,182 @@
+name: CI/CD Pipeline
+
+on:
+  push:
+    branches: [ main, develop ]
+  pull_request:
+    branches: [ main ]
+
+jobs:
+  terraform-validate:
+    name: Terraform Validation
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Setup Terraform
+      uses: hashicorp/setup-terraform@v3
+      with:
+        terraform_version: 1.5.0
+        
+    - name: Terraform Format Check
+      run: terraform fmt -check -recursive
+      
+    - name: Terraform Init
+      run: terraform init -backend=false
+      
+    - name: Terraform Validate
+      run: terraform validate
+
+  python-lint:
+    name: Python Linting
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Setup Python
+      uses: actions/setup-python@v4
+      with:
+        python-version: '3.11'
+        
+    - name: Install dependencies
+      run: |
+        python -m pip install --upgrade pip
+        pip install black pylint boto3 urllib3
+        
+    - name: Run Black formatter check
+      run: black --check lambda/
+      
+    - name: Run Pylint
+      run: pylint lambda/handler.py
+
+  security-scan:
+    name: Security Scan
+    runs-on: ubuntu-latest
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Run Trivy vulnerability scanner
+      uses: aquasecurity/trivy-action@master
+      with:
+        scan-type: 'fs'
+        scan-ref: '.'
+        format: 'sarif'
+        output: 'trivy-results.sarif'
+        
+    - name: Upload Trivy scan results to GitHub Security tab
+      uses: github/codeql-action/upload-sarif@v2
+      if: always()
+      with:
+        sarif_file: 'trivy-results.sarif'
+
+  terraform-plan:
+    name: Terraform Plan
+    runs-on: ubuntu-latest
+    needs: [terraform-validate, python-lint]
+    if: github.event_name == 'pull_request'
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Setup Terraform
+      uses: hashicorp/setup-terraform@v3
+      with:
+        terraform_version: 1.5.0
+        
+    - name: Configure AWS credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: us-east-1
+        
+    - name: Terraform Init
+      run: terraform init
+      
+    - name: Terraform Plan
+      run: terraform plan -no-color
+      continue-on-error: true
+      
+    - name: Comment PR with plan
+      uses: actions/github-script@v6
+      with:
+        script: |
+          const output = `#### Terraform Plan 📖
+          
+          \`\`\`
+          ${{ steps.plan.outputs.stdout }}
+          \`\`\`
+          
+          *Pusher: @${{ github.actor }}, Action: \`${{ github.event_name }}\`*`;
+          
+          github.rest.issues.createComment({
+            issue_number: context.issue.number,
+            owner: context.repo.owner,
+            repo: context.repo.repo,
+            body: output
+          })
+
+  deploy-dev:
+    name: Deploy to Development
+    runs-on: ubuntu-latest
+    needs: [terraform-validate, python-lint, security-scan]
+    if: github.ref == 'refs/heads/develop' && github.event_name == 'push'
+    environment: development
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Setup Terraform
+      uses: hashicorp/setup-terraform@v3
+      with:
+        terraform_version: 1.5.0
+        
+    - name: Configure AWS credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: us-east-1
+        
+    - name: Terraform Init
+      run: terraform init
+      
+    - name: Terraform Apply
+      run: terraform apply -auto-approve -var="environment=dev"
+
+  deploy-prod:
+    name: Deploy to Production
+    runs-on: ubuntu-latest
+    needs: [terraform-validate, python-lint, security-scan]
+    if: github.ref == 'refs/heads/main' && github.event_name == 'push'
+    environment: production
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      
+    - name: Setup Terraform
+      uses: hashicorp/setup-terraform@v3
+      with:
+        terraform_version: 1.5.0
+        
+    - name: Configure AWS credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        aws-region: us-east-1
+        
+    - name: Terraform Init
+      run: terraform init
+      
+    - name: Terraform Apply
+      run: terraform apply -auto-approve -var="environment=prod"

.gitignore

@@ -0,0 +1,39 @@
+# Terraform
+*.tfstate
+*.tfstate.*
+*.tfvars
+!*.tfvars.example
+.terraform/
+.terraform.lock.hcl
+tfplan
+
+# Lambda deployment package
+lambda_deployment.zip
+lambda.zip
+
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+env/
+venv/
+ENV/
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Logs
+*.log
+response.json
+
+# AWS
+.aws/

CHANGELOG.md

@@ -0,0 +1,42 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [1.0.0] - 2024-01-15
+
+### Added
+- Initial release of AWS Cost Optimization Dashboard
+- Terraform infrastructure for automated cost monitoring
+- Lambda function for daily cost collection and alerting
+- S3 storage for historical cost data with lifecycle policies
+- Slack integration for cost threshold alerts
+- EventBridge scheduling for daily cost checks
+- Comprehensive security with IAM least privilege
+- Automated deployment scripts
+- Testing and validation utilities
+
+### Features
+- Daily AWS cost monitoring via Cost Explorer API
+- Service-level cost breakdown and analysis
+- Configurable cost thresholds and alert schedules
+- Encrypted storage of historical cost data
+- Rich Slack notifications with cost details
+- Multi-environment support (dev, staging, prod)
+- Comprehensive error handling and logging
+- Cost optimization with S3 lifecycle policies
+
+### Security
+- IAM roles with least privilege access
+- S3 bucket encryption with AES256
+- Secrets Manager for secure webhook storage
+- CloudTrail integration for audit logging
+- VPC deployment options for enhanced security
+
+### Documentation
+- Comprehensive README with setup instructions
+- Best practices guide for security and operations
+- Contributing guidelines for open source collaboration
+- Example configurations and customization options