Skip to content
Security and Tests

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW #302

Sign in to view logs

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW

fix: (security) 1/ Setup APIGW API Key as a password encrypted discovery_credential in SNOW, and then use that in BusinessRule/Outbound REST messages to publish events from SNOW to Security IR; 2/ Replace SNOW Client Secret being stored in SSM with SecretsManager; 3/ Reduce the wildcard permissions to specific resources, and actions in the cdk; (documentation) 1/ Added a note for the users to expect 2-4 mins delay for new incidents sync between Security-IR and SNOW #302

Triggered via pull request January 28, 2026 05:47
@nshalabhnshalabh
synchronize #72
main
Status Success
Total duration 2m 45s
Artifacts 2

security-and-tests.yml

on: pull_request
security-scan
1m 4s
security-scan
cdk-nag
2m 39s
cdk-nag
tests
2m 41s
tests
Fit to window
Zoom out
Zoom in

Annotations

4 warnings
security-scan
The process '/usr/bin/git' failed with exit code 128
security-scan
Unexpected input(s) 'grype-version', valid inputs are ['path', 'file', 'image', 'registry-username', 'registry-password', 'format', 'github-token', 'artifact-name', 'output-file', 'syft-version', 'dependency-snapshot', 'upload-artifact', 'upload-artifact-retention', 'upload-release-assets', 'config']
cdk-nag
The process '/usr/bin/git' failed with exit code 128
tests
The process '/usr/bin/git' failed with exit code 128

Artifacts

Produced during runtime
Name Size Digest
sample-aws-security-incident-response-integrations-security-scan-2.spdx.json
3.25 KB
sha256:953a6b48968b9c05a26327699a4a1cf0d4bcba31ad4c00e77bb053decc9a20d3
sample-aws-security-incident-response-integrations-security-scan.spdx.json
3.25 KB
sha256:907d966a46cf481718f64fa471bd11a128920b034b0d3b876b331450cd49fda4