CodeBuild Project Source Repository URL Does Not Use OAuth

Overview

This check process examines whether the GitHub or Bitbucket source repository URL includes personal access tokens or a combination of a username and password.

Storing or transmitting sign-in credentials in plain text or embedding them in the repository URL is strongly discouraged. Rather than relying on personal access tokens or login details, it is recommended to employ OAuth for authorizing access to GitHub or Bitbucket repositories. Utilizing personal access tokens or login credentials may risk exposing sensitive information to unintended data exposure and unauthorized access.

Vendor

AWS

Cloud Service

CodeBuild

PCI DSS v3.2.1/8.2.1

CodeBuild.1

Severity

Item Types

AWS::CodeBuild::Project

Overview​

Vendor​

Cloud Service​

Related Requirements​

Related Controls​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Related Requirements

Related Controls

Severity

Item Types