Control: AWS > HIPAA > CodeBuild > CodeBuild project plaintext environment variables should not contain sensitive AWS values
Ensure authentication credentials AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY do not exist within AWS CodeBuild project environments. Do not store these variables in clear text. Storing these variables in clear text leads to unintended data exposure and unauthorized access.
Resource Types
This control targets the following resource types:
Category
In Your Workspace
Developers
- tmod:@turbot/aws-hipaa#/control/types/codeBuildProjectPlaintextEnvVariablesNoSensitiveAwsValues
- tmod:@turbot/turbot#/control/categories/complianceHipaa
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-hipaa#/control/types/codeBuildProjectPlaintextEnvVariablesNoSensitiveAwsValues"
Get Controls
Control Type URI
Category URI
GraphQL
CLI