Skip to content

git CodeBuild baseline role permissions to use GitHub connection #1813

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
petrkalos merged 2 commits into from
May 12, 2025
Merged

git CodeBuild baseline role permissions to use GitHub connection #1813

petrkalos merged 2 commits into from
May 12, 2025

Conversation

@SofiaSazonova
Copy link
Contributor

@SofiaSazonova SofiaSazonova commented May 8, 2025

Feature or Bugfix

  • Bugfix

Detail

  • now, when we do full clone for source repo (because of symlink) code build needs additional permissions
  • troubleshooting guide

Relates

Security

Please answer the questions below briefly where applicable, or write N/A. Based on
OWASP 10.

  • Does this PR introduce or modify any input fields or queries - this includes
    fetching data from storage outside the application (e.g. a database, an S3 bucket)?
    • Is the input sanitized?
    • What precautions are you taking before deserializing the data you consume?
    • Is injection prevented by parametrizing queries?
    • Have you ensured no eval or similar functions are used?
  • Does this PR introduce any functionality or component that requires authorization?
    • How have you ensured it respects the existing AuthN/AuthZ mechanisms?
    • Are you logging failed auth attempts?
  • Are you using or adding any cryptographic features?
    • Do you use a standard proven implementations?
    • Are the used keys controlled by the customer? Where are they stored?
  • Are you introducing any new policies/roles/users?
    • Have you used the least-privilege principle? How?

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@SofiaSazonova SofiaSazonova requested a review from petrkalos May 8, 2025 13:58
@SofiaSazonova SofiaSazonova requested a review from dlpzx May 8, 2025 14:12
@petrkalos petrkalos merged commit b2cfcc1 into data-dot-all:main May 12, 2025
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@petrkalos petrkalos petrkalos approved these changes

@dlpzx dlpzx dlpzx approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SofiaSazonova @petrkalos @dlpzx