Update cdk-nag github actions to v4, add OIDC role #758

dlpzx · 2023-09-14T09:06:49Z

Please answer the questions below briefly where applicable, or write N/A. Based on
OWASP 10.

Does this PR introduce or modify any input fields or queries - this includes
fetching data from storage outside the application (e.g. a database, an S3 bucket)?
- Is the input sanitized?
- What precautions are you taking before deserializing the data you consume?
- Is injection prevented by parametrizing queries?
- Have you ensured no eval or similar functions are used?
Does this PR introduce any functionality or component that requires authorization?
- How have you ensured it respects the existing AuthN/AuthZ mechanisms?
- Are you logging failed auth attempts?
Are you using or adding any cryptographic features?
- Do you use a standard proven implementations?
- Are the used keys controlled by the customer? Where are they stored?
Are you introducing any new policies/roles/users?
- Have you used the least-privilege principle? How?

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

dlpzx added 2 commits September 14, 2023 11:05

update cdk-nag github actions to v4, add role, dummy commit to deploy/

2f4f91c

dummy commit to deploy/

e40890a

dlpzx requested a review from jaidisido September 14, 2023 09:24

jaidisido approved these changes Sep 14, 2023

View reviewed changes

dlpzx merged commit 4c3263c into main Sep 14, 2023
8 checks passed

dlpzx mentioned this pull request Sep 14, 2023

Add naming convention in app.py for CICD pipeline #761

Closed

dlpzx deleted the fix/cdk-nag-update-to-v4 branch November 8, 2023 08:35

Provide feedback