cloudsploit icon indicating copy to clipboard operation
cloudsploit copied to clipboard
verified publisher icon aquasecurity

Feature/plugin/ses validated domains

Open jchrisfarris opened this issue 5 years ago • 1 comments

This plugin produces a failing result for any validated SES domain. SES Domains (vs SES email identities) present a phishing/forgery risk in accounts with loose IAM access or in event of account compromise.

These plugins were developed by Trek10 under contract to WarnerMedia for release back into the main CloudSploit Scanning Engine. WarnerMedia expressly authorizes their contribution.

jchrisfarris avatar Jun 08 '20 16:06 jchrisfarris

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
0 out of 3 committers have signed the CLA.

:x: Ryan Farina
:x: hauboldj
:x: robertramsey117

Ryan Farina seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account.
You have signed the CLA already but the status is still pending? Let us recheck it.

CLAassistant avatar Jun 08 '20 16:06 CLAassistant