I love using replit for designing and building applications. I was just using Replit to generate examples and prototypes for my Dev team. I now realize that for some scenarios the applications I have developed could be used in a production role with clients. Unfortunately, since we do not have a BAA signed with Replit I need to always use de identified data to build applications. Then I need to submit the application to my team to deploy it in our secure Azure environment. Two questions, 1 will Replit sign a HIPAA BAA and 2. is there an easier way to deploy applications to Azure. The process is complicated enough that I need my DevOps team to do it.
Thanks!
1 Like
I work in healthcare with Replit. NEVER put PHI in Replit.
Use GitHub actions to setup a CI/DI pipeline that pushes to azure.
You can give Replit your API keys for both and it will set them up.
This is one of my CI/CD pipelines for healthcare:
Let me know if you have questions on the topic.
1 Like
What type of biz is it?
What would be helpful for me to cover?
On this project, I have 4 separate actions:
-
ci-test — Runs automatically on every push. Handles the fast feedback loop: type checking, linting, dependency audit, 16-shard tests with coverage, build, and integration tests. No analysis or deploy.
-
ci-full — Manual trigger only. Runs everything from ci-test plus CodeQL security analysis and SonarCloud code quality scan.
-
ci-deploy — Manual trigger only. Runs everything from ci-full, and if all checks pass, deploys to ECS.
-
ci-deploy-only — Manual trigger only. A troubleshooting escape hatch that skips all tests and analysis, and just builds and deploys to ECS.
Action 1 is taken every time Replit makes a commit. It is way faster to run my tests in CI than in Replit. (I have thousands of tests.)
I am not sure what to post, but I am happy to hop on a call for a quick virtual coffee and answer any questions you might have. You can grab a virtual coffee by visiting https://mancuso.ai.