We are using FC2, with CI pipeline running at Aliyun.
This is our deploy command:
npm config set registry https://registry.npmmirror.com
npm install -g @serverless-devs/s
s config add --AccessKeyID $FC_AK --AccessKeySecret $FC_SK -a fc
s build --use-local -t s.$ENV.yaml
s deploy --use-local -y -t s.$ENV.yaml
During our security monitoring, we found that every time the CI is triggered, it calls GetRole. However, because our AKSK permissions are relatively low, we don't have the necessary access. Although the deployment is working fine, just consistently triggers security alerts.
Please provide an option to skip call GetRole.
We are using FC2, with CI pipeline running at Aliyun.
This is our deploy command:
During our security monitoring, we found that every time the CI is triggered, it calls
GetRole. However, because our AKSK permissions are relatively low, we don't have the necessary access. Although the deployment is working fine, just consistently triggers security alerts.Please provide an option to skip call
GetRole.