IAM

AWS STS Identity Provider Claims Validation: Secure OIDC Trust Policies

AWS STS Identity Provider Claims Validation: Secure OIDC Trust Policies

If you’ve ever written an IAM trust policy for GitHub Actions OIDC federation, you’ve probably done the thing we all did. You set the sub condition to repo:my-org/my-repo:*, told yourself “that’s scoped enough,” and moved on with your day.

Read More
AWS Root User Security: Best Practices for IAM & Root Account Lockdown

AWS Root User Security: Best Practices for IAM & Root Account Lockdown

Hey there, tech enthusiasts! Ever felt that little thrill of power when you get root access on a system? It’s like holding the keys to the kingdom, right?

Read More