Update 20231211 #7
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
…github_actions/actions/checkout-4 Bump actions/checkout from 3 to 4
…scans Fix manual scan error
…ents Elastic Beanstalk improvements
add permissions_boundary_arn variable to set permissions boundary on all IAM roles
…to example deploy policy
add iam:DeleteRolePermissionsBoundary/iam:PutRolePermissionsBoundary to example deploy policy
…profile Manual scanning: avoid requiring an AWS profile for better usability
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
bc-jcarlson
approved these changes
Dec 12, 2023
There was a problem hiding this comment.
In regards to the CodeQL alert, I think it’s a false positive.
The alert generated because it thinks the code is trying to validate a URL, in which case it would probably be a true vuln. But, in this case, the devs are just trying to match Route53 records that have cloudflare.net anywhere in the URL, which shouldn’t introduce any risk.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.