Vulnerabilities
Hardcoded AWS credentials
criticalin_progressDescription
Long-lived AWS access keys are committed in plaintext. Rotate immediately and source from Vault / IAM roles.
Affected code
infra/deploy.sh:12export AWS_ACCESS_KEY_ID=AKIAIOSFODNN7EXAMPLE export AWS_SECRET_ACCESS_KEY=wJalrXUtnFEMI/K7MDENG/...
Details
- Severity
- critical
- CVSS
- 9.1
- CVE
- —
- CWE
- CWE-798
- File
- infra/deploy.sh
- Status
- in_progress
Remediation
No remediation generated yet. The engineer agent proposes a patch when this finding is triaged.