Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added KMS encryption for Aurora DB secrets (#935)
### Feature or Bugfix <!-- please choose --> - Bugfix ### Detail Added KMS key for encrypting Aurora DB secrets ### Relates #880 ### Security Please answer the questions below briefly where applicable, or write `N/A`. Based on [OWASP 10](https://owasp.org/Top10/en/). - Does this PR introduce or modify any input fields or queries - this includes fetching data from storage outside the application (e.g. a database, an S3 bucket)? No - Is the input sanitized? N/A - What precautions are you taking before deserializing the data you consume? N/A - Is injection prevented by parametrizing queries? N/A - Have you ensured no `eval` or similar functions are used?N/A - Does this PR introduce any functionality or component that requires authorization? N/A - How have you ensured it respects the existing AuthN/AuthZ mechanisms? N/A - Are you logging failed auth attempts?N/A - Are you using or adding any cryptographic features? N/A - Do you use a standard proven implementations? N/A - Are the used keys controlled by the customer? Where are they stored? N/A - Are you introducing any new policies/roles/users? N/A - Have you used the least-privilege principle? How? N/A By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license. --------- Co-authored-by: Mourya Darivemula <[email protected]> Co-authored-by: dlpzx <[email protected]>
- Loading branch information
3 people
authored
Dec 20, 2023
1 parent
e88fdae
commit 15ec6fc