[New Rule] Potential AWS Credential Exposure #955
Labels
backlog
Integration: AWS
AWS related rules
Rule: New
Proposal for new rule
v7.14.0
7.14 rules release package
Description
Noting these AWS API calls that return credentials. These could be split into multiple rules based on different datasets or a single rule targeting all possible exposures based on noise testing.
Required Info
Platforms
aws
Target ECS Version: x.x.x
New fields required in ECS for this?
Related issues or PRs
Optional Info
https://gist.github.com/kmcquade/33860a617e651104d243c324ddf7992a
https://kmcquade.com/2020/12/sensitive-aws-api-calls/
APIs
The text was updated successfully, but these errors were encountered: