Cloudant Credentials
Description
Cloudant is a document-oriented and distributed database running on IBM Cloud. The service can be accessed via API calls. An optional authentication method requires a username and password. An alternate authentication method consists of a username and the corresponding apikey.
Remediation
Cloudant
. Revoke the exposed secret. + The secret can be revoked from the IBM Cloudant dashboard in the Service credentials tab.
. Clean the git history. + Go under the settings section of your GitHub project and chose the change visibility button at the bottom.
. Inspect LogDNA logs to ensure the key was not utilized during the compromised period.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1304 |
| Severity | LOW |
| IaC Type | secrets |
| Frameworks | Git |
| Checkov ID | CKV_SECRET_5 |