Skip to content

Add ScoutSuite workflow for AWS security scanning #1

Description

@science

Summary

Add a reusable workflow for ScoutSuite to scan AWS accounts for security misconfigurations.

Background

ScoutSuite is an open-source multi-cloud security auditing tool that assesses security posture of cloud environments. It would complement our existing Semgrep (code) and Trivy (dependencies) scanning.

Requirements

  • Create scoutsuite.yml reusable workflow
  • Support AWS credential input (via OIDC or access keys)
  • Upload results to DefectDojo (Scout Suite scan type)
  • Document usage in README
  • Consider scheduled runs (weekly?) vs on-demand

References

Labels

enhancement, security

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions