Actions
Bug #20489
closedTerraform AWS IAM policy shouldn't allow privileges escalation
Status:
Resolved
Priority:
Normal
Assigned To:
Category:
Deployment
Target version:
Story points:
-
Release:
Release relationship:
Auto
Description
Alert from GitHub's code scanning service
The issue is described here: https://docs.bridgecrew.io/docs/ensure-iam-policies-does-not-allow-privilege-escalation
Updated by Lucas Di Pentima over 1 year ago
Updates at c342e37e4 - branch 20489-iam-policy-fix
- Restricts the dispatcher's
PassRole
policy target to only keepstore instance's profiles
Manually tested on our sandbox AWS account.
Updated by Lucas Di Pentima over 1 year ago
- % Done changed from 0 to 100
- Status changed from In Progress to Resolved
Applied in changeset arvados|d0525283de9abd103c5fd057f28c80a7249a896d.
Actions