yatas-aws icon indicating copy to clipboard operation
yatas-aws copied to clipboard

Published 20 hours ago verified publisher icon padok-team

Metadata

Plugin for YATAS that audits AWS accounts for misconfiguration and security issues

Results 21 yatas-aws issues
Sort by recently updated
recently updated
newest added

Check I had to do manually

I've encountered possible improvements for this plugin : - ELB endpoint are configured with HTTPS - ELB redirect HTTP to HTTPS

Laudenlaruto avatar Laudenlaruto

enhancement
good first issue
team:library-lovelace

Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more. > [!WARNING] These dependencies are deprecated: | Datasource | Name | Replacement PR? |...

renovate[bot] avatar renovate[bot]

team:library-lovelace

Lambda checks suggestions

Hey ! Here are some suggestions to add to lambdas checks Check if any environment variable key contains SECRET, KEY, TOKEN (case insensitive) to check if there is sensitive data....

ThomasLachaux avatar ThomasLachaux

improvements
team:library-lovelace

feat(all): All changes to the new test AWS_VPC_007

Check that vpc are not connected to secuityGroup inbound 0.0.0.0/0 on other ports than 80 and 443 Makefile not committed this time

Thibaut-Padok avatar Thibaut-Padok

main
team:library-lovelace

AWS Parameter Store suggestions

Hey ! A suggestion that would be nice to add is to check if all parameters are of type `SecureString` instead of `String` CLI equivalent ```bash $ aws ssm get-parameter...

ThomasLachaux avatar ThomasLachaux

improvements
team:library-lovelace

AWS_DYN_001 False negative

I work on a project where all DynamoDB tables are maked as wrong on check AWS_DYN_001 ``` ❌ AWS_DYN_001 Dynamodbs are encrypted - 0/9 Dynamodb encryption is not enabled on...

ThomasLachaux avatar ThomasLachaux

bug
team:library-lovelace

AWS_IAM_003 false negative

The plugin says users can elevate rights, because it assumes that the permission `iam:CreateAccessKey` is enough to elevate rights. However, this permission only allows for privilege escalation if its scope...

piaverous avatar piaverous

team:library-lovelace

chore(deps): update all minor aws dependencies (minor)

2 comment

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/aws/aws-sdk-go-v2/service/acm](https://redirect.github.com/aws/aws-sdk-go-v2) | `v1.17.15` -> `v1.30.0` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2faws%2faws-sdk-go-v2%2fservice%2facm/v1.30.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2faws%2faws-sdk-go-v2%2fservice%2facm/v1.30.0?slim=true)](https://docs.renovatebot.com/merge-confidence/)...

renovate[bot] avatar renovate[bot]

dependencies
team:library-lovelace

Refacto Time

StanGirard avatar StanGirard

team:library-lovelace

chore(deps): update module github.com/padok-team/yatas to v1.5.1

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [github.com/padok-team/yatas](https://togithub.com/padok-team/yatas) | `v1.4.2` -> `v1.5.1` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fpadok-team%2fyatas/v1.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fpadok-team%2fyatas/v1.5.1?slim=true)](https://docs.renovatebot.com/merge-confidence/)...

renovate[bot] avatar renovate[bot]

dependencies
team:library-lovelace

Metadata

15
Stars
3
Forks
Watchers

Owner

verified publisher icon padok-team

Metadata

Plugin for YATAS that audits AWS accounts for misconfiguration and security issues

Back