IBM Cloud IAM Key
Description
The IBM Cloud Identity and Access Management (IAM) service manages keys that can give access to infrastructure API and to resources.
Remediation
IBM Cloud
. Revoke the exposed secret. + To delete an API key, complete the following steps:
. In the console, go to Manage > Access (IAM) > API keys.
. Identify the row of the API key that you want to delete, and select Delete from the Actions List of actions icon menu.
. Then, confirm the deletion by clicking Delete.
. Clean the git history. + Go under the settings section of your GitHub project and chose the change visibility button at the bottom.
. Check any relevant access logs to ensure the key was not utilized during the compromised period.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1306 |
| Severity | HIGH |
| IaC Type | secrets |
| Frameworks | Git |
| Checkov ID | CKV_SECRET_7 |