Skip to content

Replace AWS access key example pattern with non-matching placeholder#433

Merged
Lomilar merged 2 commits intomasterfrom
copilot/remove-exposed-aws-access-key
Apr 14, 2026
Merged

Replace AWS access key example pattern with non-matching placeholder#433
Lomilar merged 2 commits intomasterfrom
copilot/remove-exposed-aws-access-key

Conversation

Copy link
Copy Markdown
Contributor

Copilot AI commented Apr 14, 2026
edited
Loading

CONFIGURATION.md contained AKIAIOSFODNN7EXAMPLE as a sample value, which matches the AWS Access Key pattern (AKIA + 16 alphanumeric chars) and triggers automated secret scanners.

Change

Replaced the example value with a descriptive placeholder that cannot be parsed as a real AWS key:

-  - PNA_AWS_ACCESS_KEY_ID=AKIAIOSFODNN7EXAMPLE
+  - PNA_AWS_ACCESS_KEY_ID=YOUR_AWS_ACCESS_KEY_ID

Copilot AI linked an issue Apr 14, 2026 that may be closed by this pull request
[Security Alert] Exposed API key(s) detected: AWS Access Key #417
Closed
@Lomilar
chore: replace fake AWS access key pattern with non-matching placehol…
0bc6622 
…der in CONFIGURATION.md

Agent-Logs-Url: https://github.com/cassproject/CASS/sessions/abf58877-0e52-4a95-9d37-2570a78a5c9a

Co-authored-by: Lomilar <337692+Lomilar@users.noreply.github.com>
Copilot AI changed the title [WIP] Remove exposed AWS access key from configuration file Replace AWS access key example pattern with non-matching placeholder Apr 14, 2026
Copilot AI requested a review from Lomilar April 14, 2026 15:58
@Lomilar Lomilar marked this pull request as ready for review April 14, 2026 16:00
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 14, 2026

⚠️ Deprecation Warning: The deny-licenses option is deprecated for possible removal in the next major release. For more information, see issue 997.

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 0bc6622.
Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

Scanned Files

None

@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud bot commented Apr 14, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@Lomilar Lomilar merged commit 3aff5c4 into master Apr 14, 2026
7 checks passed
@Lomilar Lomilar deleted the copilot/remove-exposed-aws-access-key branch April 15, 2026 12:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@Lomilar Lomilar Lomilar approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@Lomilar Lomilar

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Security Alert] Exposed API key(s) detected: AWS Access Key

2 participants

@Lomilar