herd-mdl icon indicating copy to clipboard operation
herd-mdl copied to clipboard

Published 20 hours ago verified publisher icon FINRAOS

Possible Security Problems

Open ctindall opened this issue 5 years ago • 0 comments

Hey there! I noticed some possible problems in some code in this repo. A quick summary of a few of them is below, but let me know if you're interested in seeing a full report or talking about cloud security in general.

severity: serious

filename: ./mdl/src/main/cft/mdlCreateIAMRoles.yml

line number(s): [58, 116]

resource(s):

IAM role should not allow * resource with PassRole action on its permissions policy

severity: warning

filename: ./mdl/src/main/cft/mdlCreateIAMRoles.yml

line number(s): [27, 58, 116]

resource(s):

IAM role should not allow * resource on its permissions policy

severity: warning

filename: ./mdl/src/main/cft/mdlCreateIAMRoles.yml

line number(s): [27, 58, 116]

resource(s):

Resource found with an explicit name, this disallows updates that require replacement of this resource

severity: warning

filename: ./mdl/src/main/cft/mdlHerdRds.yml

line number(s): [153]

resource(s):

Resource found with an explicit name, this disallows updates that require replacement of this resource

severity: warning

filename: ./mdl/src/main/cft/mdlCreateNsAuthSyncUtil.yml

line number(s): [80]

resource(s):

Resource found with an explicit name, this disallows updates that require replacement of this resource

severity: warning

filename: ./mdl/src/main/cft/mdlMetastor.yml

line number(s): [141]

resource(s):

Resource found with an explicit name, this disallows updates that require replacement of this resource

severity: warning

filename: ./mdl/src/main/cft/mdlCreateKeyPair.yml

line number(s): [58]

resource(s):

IAM role should not allow * resource on its permissions policy

ctindall avatar Oct 16 '19 07:10 ctindall