This repository was created for a demo lesson, focusing on demonstrating DevSecOps practices within infrastructure automation workflows. The primary goal of this lab is to perform a SAST (Static Application Security Testing) evaluation on a Shell script (
.sh) designed to manage AWS IAM (Identity and Access Management) resources. The project demonstrates how to identify vulnerabilities, excessive permissions, or configuration drifts in the code before it is deployed to the cloud environment.
- Scripting: Bash / Shell Script
- Cloud Provider: AWS (Identity and Access Management)
- Security Domain: Static Analysis (SAST)
- Recommended Tools: Checkov or ShellCheck
Important
This repository is for educational purposes only. The scripts provided may contain intentional security flaws to demonstrate how scanning tools function. Do not use these scripts in production environments without proper auditing.