From 9179402b0d838507e6a2b0fc9adff2edca0ef66c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 30 Sep 2022 13:59:49 +0200
Subject: [PATCH] Bump github.com/aws/aws-sdk-go-v2/service/ssm from 1.20.0 to
 1.30.0 in /v2 (#201)

* Bump github.com/aws/aws-sdk-go-v2/service/ssm in /v2

Bumps [github.com/aws/aws-sdk-go-v2/service/ssm](https://github.com/aws/aws-sdk-go-v2) from 1.20.0 to 1.30.0.
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.20.0...service/ec2/v1.30.0)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/service/ssm
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* [chores] Fix invalid type when upgrading SSM client

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Christophe Tafani-Dereeper <christophe.tafanidereeper@datadoghq.com>
---
 v2/go.mod                                                     | 2 +-
 v2/go.sum                                                     | 4 ++--
 .../ssm-retrieve-securestring-parameters/main.go              | 3 ++-
 3 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/v2/go.mod b/v2/go.mod
index 5a0fc6836..7acd0526b 100644
--- a/v2/go.mod
+++ b/v2/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/aws/aws-sdk-go-v2/service/rolesanywhere v1.0.10
 	github.com/aws/aws-sdk-go-v2/service/s3 v1.23.0
 	github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.16.2
-	github.com/aws/aws-sdk-go-v2/service/ssm v1.20.0
+	github.com/aws/aws-sdk-go-v2/service/ssm v1.30.0
 	github.com/aws/aws-sdk-go-v2/service/sts v1.16.19
 	github.com/aws/smithy-go v1.13.3
 	github.com/fatih/color v1.13.0
diff --git a/v2/go.sum b/v2/go.sum
index 28c295060..26092071e 100644
--- a/v2/go.sum
+++ b/v2/go.sum
@@ -154,8 +154,8 @@ github.com/aws/aws-sdk-go-v2/service/s3 v1.23.0 h1:4CUrngIysbIQpC56JchMWDNJpQCGV
 github.com/aws/aws-sdk-go-v2/service/s3 v1.23.0/go.mod h1:l+Y3grd9VGhuO7IlmFwAFNSDPFIDi/5oNa9jlk89KIc=
 github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.16.2 h1:3x1Qilin49XQ1rK6pDNAfG+DmCFPfB7Rrpl+FUDAR/0=
 github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.16.2/go.mod h1:HEBBc70BYi5eUvxBqC3xXjU/04NO96X/XNUe5qhC7Bc=
-github.com/aws/aws-sdk-go-v2/service/ssm v1.20.0 h1:MXz5QUThErWQa8axFIHOciP+Pq+5GZ3mku0xZTPqnak=
-github.com/aws/aws-sdk-go-v2/service/ssm v1.20.0/go.mod h1:PMKPCbgvdSQ/IYzF8FSYor1NSfiLXLXfKFmShw2tDNM=
+github.com/aws/aws-sdk-go-v2/service/ssm v1.30.0 h1:wDBJM7u0M1JjP+e6un1t8rhxRjM4P97LszEZt/ucQJY=
+github.com/aws/aws-sdk-go-v2/service/ssm v1.30.0/go.mod h1:JtkQSJFGEovwP6s+guH5Ap7iUemh3nMqHtg5liCv9ok=
 github.com/aws/aws-sdk-go-v2/service/sso v1.11.23 h1:pwvCchFUEnlceKIgPUouBJwK81aCkQ8UDMORfeFtW10=
 github.com/aws/aws-sdk-go-v2/service/sso v1.11.23/go.mod h1:/w0eg9IhFGjGyyncHIQrXtU8wvNsTJOP0R6PPj0wf80=
 github.com/aws/aws-sdk-go-v2/service/ssooidc v1.13.5 h1:GUnZ62TevLqIoDyHeiWj2P7EqaosgakBKVvWriIdLQY=
diff --git a/v2/internal/attacktechniques/aws/credential-access/ssm-retrieve-securestring-parameters/main.go b/v2/internal/attacktechniques/aws/credential-access/ssm-retrieve-securestring-parameters/main.go
index f454bd36f..72bcb79ba 100644
--- a/v2/internal/attacktechniques/aws/credential-access/ssm-retrieve-securestring-parameters/main.go
+++ b/v2/internal/attacktechniques/aws/credential-access/ssm-retrieve-securestring-parameters/main.go
@@ -4,6 +4,7 @@ import (
 	"context"
 	_ "embed"
 	"errors"
+	"github.com/aws/aws-sdk-go-v2/aws"
 	"github.com/aws/aws-sdk-go-v2/service/ssm"
 	"github.com/datadog/stratus-red-team/v2/internal/providers"
 	"github.com/datadog/stratus-red-team/v2/pkg/stratus"
@@ -79,7 +80,7 @@ func detonate(map[string]string) error {
 
 		response, err := ssmClient.GetParameters(context.Background(), &ssm.GetParametersInput{
 			Names:          names,
-			WithDecryption: true,
+			WithDecryption: aws.Bool(true),
 		})
 		if err != nil {
 			return errors.New("unable to retrieve SSM parameters: " + err.Error())