[GH-ISSUE #140] Add dependency vulnerability scanning to CI/CD #118

New issue

Closed

opened 2026-03-07 19:42:14 +03:00 by kerem · 2 comments

kerem commented

2026-03-07 19:42:14 +03:00

Owner

Originally created by @mschlaipfer on GitHub (Feb 5, 2026).
Original GitHub issue: https://github.com/awslabs/iam-policy-autopilot/issues/140

https://github.com/google/osv-scanner and/or cargo audit

See https://shnatsel.medium.com/i-am-stepping-back-from-maintaining-cargo-audit-35bb5f832d43 for some discussion on osv-scanner vs cargo audit (I'm not sure yet if one or the other is preferable).

Originally created by @mschlaipfer on GitHub (Feb 5, 2026). Original GitHub issue: https://github.com/awslabs/iam-policy-autopilot/issues/140 https://github.com/google/osv-scanner and/or cargo audit See https://shnatsel.medium.com/i-am-stepping-back-from-maintaining-cargo-audit-35bb5f832d43 for some discussion on osv-scanner vs cargo audit (I'm not sure yet if one or the other is preferable).

kerem

2026-03-07 19:42:14 +03:00

closed this issue
added the
tooling
label

kerem referenced this issue

2026-03-15 11:49:13 +03:00

[GH-ISSUE #118] Simplify is_arn validation in fix-access-denied workflow #92

kerem commented

2026-03-15 11:49:57 +03:00

Author

Owner

@weibenz1 commented on GitHub (Feb 5, 2026):

Is this different from our https://github.com/awslabs/iam-policy-autopilot/security/dependabot scanning here?

@weibenz1 commented on GitHub (Feb 5, 2026): Is this different from our https://github.com/awslabs/iam-policy-autopilot/security/dependabot scanning here?

kerem commented

2026-03-15 11:50:02 +03:00

Author

Owner

@mschlaipfer commented on GitHub (Feb 6, 2026):

I wasn't aware we have something running already and since Dependabot does support Rust I'll close this.

@mschlaipfer commented on GitHub (Feb 6, 2026): I wasn't aware we have something running already and since Dependabot does support Rust I'll close this.