CodeAnt AI home page

Support
Dashboard
Dashboard

Start Here

What is CodeAnt?
Join Community

Setup

Github
Bitbucket
Gitlab
Azure Devops

Pull Request Review

Features
Customize Review
Quality Gates
Integrations

Scan center

Code Security
Code Quality
Cloud Security
Engineering Productivity

Integrations

Jira
Test Coverage
CI/CD

IDE

Setup
Review
Enhancements

Rule Reference

Compliance
Anti-Patterns
Code Governance
Infrastructure Security Database
Application Security Database
- Apex
- Bash
- C
- Clojure
- Cpp
- Csharp
- Dockerfile
- Elixir
- Fingerprints
- Generic
- Go
- Html
- Java
- Javascript
- Json
- Kotlin
- Ocaml
- Php
- Problem-based-packs
- Python
- Ruby
- Rust
- Scala
- Solidity
- Swift
- Terraform
- Typescript
  - Angular
  - Aws-cdk
    - Security
    - Security
  - Lang
  - Nestjs
  - Nextjs
  - React
  - Typescript
- Yaml

Resources

Open Source
Blogs

Aws-cdk

Security

awscdk-bucket-grantpublicaccessmethod

Using the GrantPublicAccess method on bucket contruct $X will make the objects in the bucket world accessible. Verify if this is intentional.
Likelihood: HIGH
Confidence: MEDIUM
CWE:
- CWE-306: Missing Authentication for Critical Function
OWASP:
- A07:2021 - Identification and Authentication Failures

awscdk-codebuild-project-public

CodeBuild Project $X is set to have a public URL. This will make the build results, logs, artifacts publically accessible, including builds prior to the project being public. Ensure this is acceptable for the project.
Likelihood: MEDIUM
Confidence: MEDIUM
CWE:
- CWE-306: Missing Authentication for Critical Function
OWASP:
- A07:2021 - Identification and Authentication Failures

twitter linkedin

Powered by Mintlify

Assistant

Responses are generated using AI and may contain mistakes.