Repository Accounts and Administrators

ACM.391 Thinking about software development environments, permissions, complexity, and naming conventions

Teri Radichel

Published in

Cloud Security

8 min readNov 18, 2023

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Check out my series on Automating Cybersecurity Metrics | Code.

🔒 Related Stories: AWS Organizations | AWS Security | Secure Code

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

In the last post I explained why I’m removing dynamic references from some of my CloudFormation templates in favor of scripting parameters, retrieving parameters via scripts, and passing the values in as CloudFormation parameters. I also described my wishlist for better protection of secrets in CloudFormation parameters.

Why I am not using Dynamic AWS SSM Parameter Store Resolution in CloudFormation

ACM.390 A feature request for CloudFormation when using secrets and parameters to better protect customer data

medium.com

In this post, I’m going to describe something I’ve been thinking about — environments and where you store your repositories like Elastic Container Registry and AWS CodeCommit. I’ve been using those to store source control and containers.

Repository Accounts and Administrators

ACM.391 Thinking about software development environments, permissions, complexity, and naming conventions

Why I am not using Dynamic AWS SSM Parameter Store Resolution in CloudFormation

ACM.390 A feature request for CloudFormation when using secrets and parameters to better protect customer data

Written by Teri Radichel