Remediate a penetration test finding - AWS Security Agent
PrerequisitesStep 1: Enable or disable automatic remediationStep 2: Select repositories for code remediationStep 3: Start a penetration test and view findingsStep 4: Start and view code remediation

Remediate a penetration test finding

When viewing the findings for a penetration test, you can request AWS Security Agent attempt to remediate a finding. For private GitHub repositories, AWS Security Agent opens a pull request with the proposed fix. For public repositories, the remediation is available as a downloadable diff file that you can apply locally.

You must enable finding remediation in the AWS Management Console. (See Enable users to start remediation of penetration test findings.) Users can start remediation for a specific finding from the AWS Security Agent Web App.

Note

Code remediation is currently available in only us-east-1.

Prerequisites

Before you begin, ensure you have:

  • A completed or in-progress penetration test run

  • Access to the AWS Security Agent web application

  • Familiarity with your application’s architecture and security requirements

Step 1: Enable or disable automatic remediation

You can configure code remediation options when you create or modify a penetration test. If you enable automatic remediation, AWS Security Agent will automatically attempt to remediate the associated GitHub repositories if the Agent confirms a finding during the pentest. You can also manually start code remediation. . In the view to edit Penetration test details, in the Automatic code remediation section, enable or disable code remediation.

Step 2: Select repositories for code remediation

  1. Click Next all the way to the last step Additional learning resources.

  2. Choose Select from resources.

  3. Choose GitHub repositories.

  4. Select the repositories that you want for code remediation.

  5. Save the penetration test.

  6. You can see the successfully associated repositories under the Penetration test learning resources tab.

Step 3: Start a penetration test and view findings

Run the penetration test to detect findings. For more information, see Review findings from a penetration test.

Step 4: Start and view code remediation

  1. Navigate to the finding.

  2. If you’ve enabled automatic code remediation, a code remediation will be started once AWS Security Agent confirms a finding.

  3. If you want to manually start a code remediation, click the Remediate code button.

  4. In the Code Remediation section of the finding, you can view the code remediation status and links to the pull requests. If the GitHub repository is public, the code remediation is available as a downloadable file instead of a pull request. You can run git apply /path/to/code_remediation_changes.diff to apply the change to your repository locally.