Skip to content

Conversation

@kporter101
Copy link
Collaborator

@kporter101 kporter101 commented Sep 5, 2025

How to read this pull request

SECVULN-23992
The AWS access key that we're currently using for the github_actions-enos-provider IAM user was created over 90 days ago. It should be rotated in order to mitigate against the risks of static credentials associated with using a service user. I have created a new key and added it to this repo's GH Actions Secrets. This PR replaces the old key. Once we have confirmed that introducing the new key hasn't broken anything, the old key will be removed from GH Actions secrets and AWS keys.

Checklist

  • The commit message includes an explanation of the changes
  • Manual validation of the changes have been performed (if possible)
  • New or modified code has requisite test coverage (if possible)
  • I have performed a self-review of the changes
  • I have made necessary changes and/or pull requests for documentation
  • I have written useful comments in the code
  • Version file/release label updated, if release needed

@kporter101 kporter101 merged commit 5a21e38 into main Sep 8, 2025
19 checks passed
@kporter101 kporter101 deleted the SECVULN-23992/replace-aws-access-key branch September 8, 2025 20:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants