Update workflows to use IAM role auth - Githubissues

aws-actions / vulnerability-scan-github-action-for-amazon-inspector

Scan artifacts with Amazon Inspector from GitHub Actions workflows.

https://docs.aws.amazon.com/inspector/

MIT License

25 stars 6 forks source link

Update workflows to use IAM role auth #49

Closed bluesentinelsec closed 5 months ago

bluesentinelsec commented 5 months ago

Description

Before this change, this project's workflows used AWS session and secret keys to authenticate to Inspector.

After this change, the project workflows use IAM roles for authentication, which adds security benefits:

Roles provide temporary credentials that can be used to invoke Inspector, after which point, the credentials expire.

Related Issues

N/A

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.