Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remediate Trivy Alerts on Analytical Platform Data Production Resources #3009

Closed
7 tasks
Tracked by #1827
julialawrence opened this issue Jan 18, 2024 · 2 comments
Closed
7 tasks
Tracked by #1827

Remediate Trivy Alerts on Analytical Platform Data Production Resources #3009

julialawrence opened this issue Jan 18, 2024 · 2 comments
Labels
data-platform-apps-and-tools This issue is owned by Data Platform Apps and Tools 🧑‍💻 Apps & Tools BAU (Epic #1827)

Comments

@julialawrence
Copy link
Contributor

julialawrence commented Jan 18, 2024
edited
Loading

On a pull request Terraform will perform static analysis using Checkov and tfsec, however components other than aws-analytical-platform-development-open-metadata haven't been processed

As of 19/07/2023, the following components are;

  • aws-analytical-platform-data-production-airflow
  • aws-analytical-platform-data-production-artifact-repos
  • aws-analytical-platform-data-production-kops
  • aws-analytical-platform-data-production-rds-s3-exports
  • aws-analytical-platform-data-production-s3-glue-crawler
  • aws-analytical-platform-data-production-create-a-derived-table

Proposal

Run static code analysis (within the dev container) on each component in turn, then remediate or skip issues flagged

Definition of Done:

  • All warnings addressed (including remediated or skipped)
@julialawrence julialawrence added 🧑‍💻 Apps & Tools BAU (Epic #1827) data-platform-apps-and-tools This issue is owned by Data Platform Apps and Tools labels Jan 18, 2024
@github-actions github-actions bot mentioned this issue Jan 18, 2024
Open
77 tasks
@BrianEllwood
Copy link
Contributor

BrianEllwood commented Jan 23, 2024
edited
Loading

@julialawrence To clarify id this ticket just for Trivy Alerts or both Trivy and Checkov ? --- ignore this Julia I am assuming checkov as that is not covered else where

@BrianEllwood BrianEllwood moved this to 💨 In Progress in Analytical Platform Jan 24, 2024
@BrianEllwood
Copy link
Contributor

I am currently working on aws-analytical-platform-data-production-airflow - both checkov and trivy

I have been recording progress in the checkov spread sheet and trivy

@github-actions github-actions bot mentioned this issue Feb 1, 2024
Closed
@jacobwoffenden jacobwoffenden moved this from 🚀 In Progress to 👀 TODO in Analytical Platform Feb 16, 2024
@Ed-Bajo Ed-Bajo closed this as completed Feb 26, 2024
@github-project-automation github-project-automation bot moved this from 👀 TODO to 🎉 Done in Analytical Platform Feb 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
data-platform-apps-and-tools This issue is owned by Data Platform Apps and Tools 🧑‍💻 Apps & Tools BAU (Epic #1827)
Projects
Analytical Platform
Archived in project
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Ed-Bajo @BrianEllwood @julialawrence