Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remediate Trivy Alerts on Cluster Resources #3008

Closed
1 of 7 tasks
Tracked by #1827
julialawrence opened this issue Jan 18, 2024 · 0 comments
Closed
1 of 7 tasks
Tracked by #1827

Remediate Trivy Alerts on Cluster Resources #3008

julialawrence opened this issue Jan 18, 2024 · 0 comments
Labels
data-platform-apps-and-tools This issue is owned by Data Platform Apps and Tools 🧑‍💻 Apps & Tools BAU (Epic #1827)

Comments

@julialawrence
Copy link
Contributor

julialawrence commented Jan 18, 2024
edited by BrianEllwood
Loading

On a pull request Terraform will perform static analysis using Checkov and tfsec, however components other than aws-analytical-platform-development-open-metadata haven't been processed

As of 19/07/2023, the following components are;

  • aws-analytical-platform-development-cluster
  • aws-analytical-platform-development-open-metadata
  • aws-analytical-platform-management-production-cluster
  • aws-analytical-platform-production-cluster
  • aws-analytical-platform-data-production-openmetadata
  • cloud-platform-live-data-platform-production-github-actions-self-hosted-runners

Proposal

Run static code analysis (within the dev container) on each component in turn, then remediate or skip issues flagged

Definition of Done:

  • All warnings addressed (including remediated or skipped)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
data-platform-apps-and-tools This issue is owned by Data Platform Apps and Tools 🧑‍💻 Apps & Tools BAU (Epic #1827)
Projects
Analytical Platform
Archived in project
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Ed-Bajo @julialawrence @AntFMoJ