Skip to content
Security and Tests

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW #298

Sign in to view logs

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW #298

Triggered via pull request January 28, 2026 05:31
@nshalabhnshalabh
synchronize #72
main
Status Success
Total duration 2m 52s
Artifacts 2

security-and-tests.yml

on: pull_request
security-scan
1m 13s
security-scan
cdk-nag
2m 37s
cdk-nag
tests
2m 49s
tests
Fit to window
Zoom out
Zoom in

Annotations

4 warnings
security-scan
The process '/usr/bin/git' failed with exit code 128
security-scan
Unexpected input(s) 'grype-version', valid inputs are ['path', 'file', 'image', 'registry-username', 'registry-password', 'format', 'github-token', 'artifact-name', 'output-file', 'syft-version', 'dependency-snapshot', 'upload-artifact', 'upload-artifact-retention', 'upload-release-assets', 'config']
cdk-nag
The process '/usr/bin/git' failed with exit code 128
tests
The process '/usr/bin/git' failed with exit code 128

Artifacts

Produced during runtime
Name Size Digest
sample-aws-security-incident-response-integrations-security-scan-2.spdx.json
3.25 KB
sha256:7b5ea14b5e04bb3090600926cae8c218f6a9be08862036ff14aef118253832af
sample-aws-security-incident-response-integrations-security-scan.spdx.json
3.25 KB
sha256:9871c11851bc6dbb2661c20862665e60fce9f768ba9942bcd3ea549eb809f96b