newrelic
diff --git a/‎.github/workflows/pull_request.yaml
+130 b/‎.github/workflows/pull_request.yaml
+130
diff --git a/‎.github/workflows/release.yaml
+40 b/‎.github/workflows/release.yaml
+40
diff --git a/‎.github/workflows/trivy_schedule.yaml
+34 b/‎.github/workflows/trivy_schedule.yaml
+34
diff --git a/‎.gitignore
+51 b/‎.gitignore
+51
diff --git a/‎DEVELOPER.md
+27 b/‎DEVELOPER.md
+27
@@ -0,0 +1,130 @@
+name: Pull Request Workflow
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  validate-template-code:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Install AWS SAM CLI
+        run: |
+          pip install aws-sam-cli
+
+      - name: Install golint
+        run: |
+          go install golang.org/x/lint/golint@latest
+          echo "$(go env GOPATH)/bin" >> $GITHUB_PATH
+
+      - name: Lint Go Code
+        run: |
+            # Find all .go files, excluding the vendor directory
+            go_files=$(find . -name "*.go" -not -path "./vendor/*" -not -path "./src/vendor/*")
+            
+            # Run golint on each Go file
+            lint_output=""
+            for file in $go_files; do
+              output=$(golint $file)
+              if [ -n "$output" ]; then
+                lint_output="$lint_output\n$output"
+              fi
+            done
+  
+            if [ -n "$lint_output" ]; then
+              echo "Linting issues found:"
+              echo -e "$lint_output"
+              exit 1
+            else
+              echo "No linting issues found."
+            fi
+      - name: Run gofmt
+        run: |
+          # Find all .go files and check if they are properly formatted
+          unformatted=$(gofmt -l $(find . -name "*.go" -not -path "./src/vendor/*"))
+          if [ -n "$unformatted" ]; then
+            echo "The following files are not formatted:"
+            echo "$unformatted"
+            exit 1
+          else
+            echo "All files are properly formatted."
+          fi
+      
+      - name: Validate SAM Templates
+        run: |
+          for template in $(find . -name ".yaml" -o -name ".yml"); do
+          echo "Validating template: $template"
+          sam validate --template-file "$template" --region us-east-2 --lint
+          done
+  security:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      - name: Run CFN Nag Security Checks
+        uses: stelligent/cfn_nag@master
+        with:
+          input_path: .
+          extra_args: -o sarif
+          output_path: cfn_nag.sarif
+      - name: Upload CFN Nag SARIF
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: cfn_nag.sarif    
+          category: security
+                                 
+  trivy-scan:
+    name: Trivy security scan
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Run Trivy vulnerability scanner in repo mode for Low Priority
+        uses: aquasecurity/trivy-action@master
+        with:
+          scan-type: fs
+          ignore-unfixed: true
+          severity: 'LOW,MEDIUM'
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
+      - name: Run Trivy vulnerability scanner in repo mode for High Priority
+        uses: aquasecurity/trivy-action@master
+        with:
+          scan-type: fs
+          ignore-unfixed: true
+          exit-code: 1
+          severity: 'HIGH,CRITICAL'
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
+
+  test-and-coverage:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: '1.22'
+      #scripts to include the integration and end to end tests should be added here
+      - name: Run Test Cases and Coverage
+        run: |
+          cd src
+          mkdir -p coverage
+          go test -race -coverprofile=coverage/coverage.out ./...
+          go tool cover -html=coverage/coverage.out -o coverage/coverage.html
+
+      - name: Upload Coverage Report
+        uses: actions/upload-artifact@v3
+        with:
+          name: coverage-report
+          path: src/coverage/coverage.html
@@ -0,0 +1,40 @@
+name: Build and Deploy Lambda
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  build-and-deploy:
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      contents: write
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: '1.22'
+
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v3
+        with:
+          role-to-assume: ${{ secrets.AWS_SAR_PUBLISHER_ROLE }}
+          aws-region: us-east-2
+
+      - name: Install AWS SAM CLI
+        run: |
+          pip install aws-sam-cli
+
+      - name: Build SAM Application
+        run: sam build --template-file template.yaml --region us-east-2
+
+      - name: Package SAM Application
+        run: sam package --s3-bucket unified-lambda-cft-1 --output-template-file packaged.yaml --region us-east-2
+# should we include retries as part of uploading?
+      - name: Upload CloudFormation Template to S3
+        run: aws s3 cp packaged.yaml s3://unified-lambda-serverless-1/packaged.yaml
@@ -0,0 +1,34 @@
+name: Security Scan
+
+on:
+  schedule:
+    # Run every day at 12 AM IST (which is 6:30 PM UTC)
+    - cron: "30 18 * * *"
+
+jobs:
+  trivy:
+    name: Trivy security scan
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Run Trivy vulnerability scanner sarif output
+        uses: aquasecurity/trivy-action@master
+        with:
+          scan-type: fs
+          ignore-unfixed: true
+          severity: 'HIGH,CRITICAL'
+          format: 'template'
+          template: '@/contrib/sarif.tpl'
+          output: 'trivy-results.sarif'
+          exit : 1
+        env:
+          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db
+          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db
+
+      - name: Upload Trivy scan results to GitHub Security tab
+        uses: github/codeql-action/upload-sarif@v3
+        if: always()
+        with:
+          sarif_file: 'trivy-results.sarif'
@@ -0,0 +1,51 @@
+.DS_Store
+
+# Created by https://www.toptal.com/developers/gitignore/api/sam+config,go
+# Edit at https://www.toptal.com/developers/gitignore?templates=sam+config,go
+
+### Go ###
+# If you prefer the allow list template instead of the deny list, see community template:
+# https://github.com/github/gitignore/blob/main/community/Golang/Go.AllowList.gitignore
+#
+# Binaries for programs and plugins
+*.exe
+*.exe~
+*.dll
+*.so
+*.dylib
+
+# Test binary, built with `go test -c`
+*.test
+
+# Output of the go coverage tool, specifically when used with LiteIDE
+*.out
+
+# Dependency directories (remove the comment below to include it)
+# vendor/
+
+# Go workspace file
+go.work
+
+### SAM+config ###
+# Ignore build directories for the AWS Serverless Application Model (SAM)
+# Info: https://aws.amazon.com/serverless/sam/
+# Docs: https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-reference.html
+
+**/.aws-sam
+
+### SAM+config Patch ###
+# SAM config - exclude this file if sharing publicly
+samconfig.toml
+
+# End of https://www.toptal.com/developers/gitignore/api/sam+config,go
+
+src/newrelic-aws-serverless-log-forwarding
+vendor/
+# updated dinamically
+test_events/cloud_watch/event.json
+
+# created by aws sam
+packaged.yml
+
+# integration test keys and secrets
+*.env
@@ -0,0 +1,27 @@
+## Implementation
+
+The Lambda leverages the [New Relic Go client](https://github.com/newrelic/newrelic-client-go) to process the logs in batches. This means it converts the AWS source logs into [detailed JSON format](https://docs.newrelic.com/docs/logs/log-api/introduction-log-api/#detailed-json).
+
+## Requirements
+
+- AWS CLI must be installed and configured with Administrator permission
+- Docker must be installed. Refer [Docker documentation.](https://www.docker.com/community-edition)
+- Golang must be installed. Refer [Golang documentation](https://golang.org)
+- Install the AWS SAM CLI. Refer [SAM CLI Documentation](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html)
+
+
+## Unit Testing and Coverage
+
+Run the following commands to:
+
+- Run the unit tests:
+
+    ```shell
+    make test
+    ```
+
+- Check the coverage:
+
+    ```shell
+    make coverage
+    ```