[Opex] CICD approach to reject PRs which leak internal details · Issue #35 · amazon-science/fmcore · GitHub | Latest TMZ Celebrity News & Gossip | Watch TMZ Live
Skip to content

[Opex] CICD approach to reject PRs which leak internal details #35

New issue
New issue
Open
Feature
Open
[Opex] CICD approach to reject PRs which leak internal details#35
Feature
Assignees
thehellmakeradivekar-utexas
Labels
burning 🔥Urgent issueopex 🏭Operational Excellence
@adivekar-utexas

Description

@adivekar-utexas
adivekar-utexas
opened on Mar 27, 2025

A risk for any repository which is owned by internal Amazon teams is the possibility to raise PRs/issues which contain confidential details.

We need a mechanism to prevent this in some way, ideally prior to raising a PR or issue.

Possible mechanisms include:

  1. Bandit report which checks for internal URLs/actual AWS accounts/IAM roles/credentials.
    • Need to check with Open-Sourcing team if we can externalize these checks.
  2. https://github.com/awslabs/automated-security-helper
  3. https://github.com/awslabs/aws-security-assessment-solution

Metadata

Metadata

Assignees

Labels

burning 🔥Urgent issueopex 🏭Operational Excellence

Type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions

    TMZ Celebrity News – Breaking Stories, Videos & Gossip

    Looking for the latest TMZ celebrity news? You've come to the right place. From shocking Hollywood scandals to exclusive videos, TMZ delivers it all in real time.

    Whether it’s a red carpet slip-up, a viral paparazzi moment, or a legal drama involving your favorite stars, TMZ news is always first to break the story. Stay in the loop with daily updates, insider tips, and jaw-dropping photos.

    🎥 Watch TMZ Live

    TMZ Live brings you daily celebrity news and interviews straight from the TMZ newsroom. Don’t miss a beat—watch now and see what’s trending in Hollywood.