Introduction The cfn_nag tool is a static analysis tool for finding obvious security weaknesses in CloudFormation templates. The core product includes rules that apply universally across environments and enterprises. That said, the product supports the development of custom rules to allow enterprise-specific rules for compliance and security controls. For more information on developing custom rules Read more…
One of the biggest challenges with managing usernames, passwords, API keys, and other secrets is balancing the need to make it simple for authorized accounts, databases, and APIs to securely access these secrets while adhering to the principle of least privilege. Simply put, most everyone knows not to store sensitive configuration information in plain text Read more…
While enterprises are capable of rapidly scaling their infrastructure in the cloud, there’s a corresponding increase in the demand for scalable mechanisms to meet security and compliance requirements based on corporate policies, auditors, security teams, and others. For example, we can easily and rapidly launch hundreds of resources – such as EC2 instances – in Read more…
Stelligent was 50 people strong at the AWS re:Invent 2018 conference in Las Vegas, NV. We were particularly proud as we announced that we are the only group at our size that is 100% AWS certified (yes, this means executives, sales, marketing, operations, and engineers). There were over 80 product announcements at the conference. Of Read more…
Learn how to perform static analysis of CloudFormation templates as part of AWS CodePipeline using AWS Lambda Read more…
When creating pipelines in AWS CodePipeline, you may want to make these pipelines available to other AWS accounts. When doing this, you’ll likely want to make these pipelines read only. A typical use case is that you want consistency for certain types of pipelines across an enterprise by providing a view of these pipelines to other Read more…