Skip to content

updated AWS access key secret and id vars #162

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 8, 2025
Merged

updated AWS access key secret and id vars #162

merged 2 commits into from
Sep 8, 2025

Conversation

@kporter101
Copy link
Contributor

@kporter101 kporter101 commented Sep 5, 2025
edited by atlassian bot
Loading

How to read this pull request

SECVULN-23992
The AWS access key that we're currently using for the github_actions-enos IAM user was created over 90 days ago. It should be rotated in order to mitigate against the risks of static credentials associated with using a service user. I have created a new key and added it to this repo's GH Actions Secrets. This PR replaces the old key. Once we have confirmed that introducing the new key hasn't broken anything, the old key will be removed from GH Actions secrets and AWS keys.

Checklist

  • The commit message includes an explanation of the changes
  • Manual validation of the changes have been performed (if possible)
  • New or modified code has requisite test coverage (if possible)
  • I have performed a self-review of the changes
  • I have made necessary changes and/or pull requests for documentation
  • I have written useful comments in the code

@kporter101 kporter101 requested a review from a team as a code owner September 5, 2025 21:19
@kporter101 kporter101 added the changelog/none Will be excluded from release notes. label Sep 5, 2025
@kporter101 kporter101 force-pushed the SECVULN-23992/update-aws-key branch 3 times, most recently from d1e7e76 to 0e2b431 Compare September 8, 2025 16:25
ryancragun
ryancragun reviewed Sep 8, 2025
View reviewed changes
Copy link
Collaborator

@ryancragun ryancragun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is super noisy because of the linters. If it's not too much trouble I'd prefer disabling the new linters and merging only the necessary changes in.

@kporter101 kporter101 force-pushed the SECVULN-23992/update-aws-key branch from 0e2b431 to e8ab28d Compare September 8, 2025 20:16
@kporter101 kporter101 merged commit fe78913 into main Sep 8, 2025
9 checks passed
@kporter101 kporter101 deleted the SECVULN-23992/update-aws-key branch September 8, 2025 21:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ryancragun ryancragun ryancragun left review comments

@brewgator brewgator brewgator approved these changes

@raskchanky raskchanky Awaiting requested review from raskchanky

@tvo0813 tvo0813 Awaiting requested review from tvo0813

@ej-hashi ej-hashi Awaiting requested review from ej-hashi

@anwittin anwittin Awaiting requested review from anwittin

Assignees

No one assigned

Labels

changelog/none Will be excluded from release notes.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kporter101 @ryancragun @brewgator