search

data-dot-all / dataall

A modern data marketplace that makes collaboration among diverse users (like business, analysts and engineers) easier, increasing efficiency and agility in data projects on AWS.
https://data-dot-all.github.io/dataall/
Apache License 2.0
230 stars 81 forks source link

ECS Role permissions reduction/cleanup #501

Open manjulaK opened 1 year ago

manjulaK commented 1 year ago

Describe the bug

Attached is the review of enhancements (please check column status) for the ECSTaskRole. There is one item that was deemed good enhancement ie is to minimize the number of cdkrole ECS Role can assume. Attached is the xls with details.

How to Reproduce

*P.S. Please do not attach files as it's considered a security risk. Add code snippets directly in the message body as much as possible.*

Expected behavior

Enhancements are made to minimize permissions to meet LP. ECSTaskRole.xlsx

Your project

No response

Screenshots

No response

OS

All

Python version

3.1

AWS data.all version

v1.3,v1.4,v1.5

Additional context

No response

dlpzx commented 1 year ago

Hello @manjulaK, thanks for opening the issue. It will be added to the V1.6 project and if there is enough bandwidth it will be part of that release.